[Aria-Security Team] FipsSHOP SQL Injection
Date: 26 Nov 2006 03:14:30 -0000
From: [email protected]
To: [email protected]
Subject: [Aria-Security Team] FipsSHOP SQL Injection
X-Virus-Scanned: antivirus-gw at tyumen.ru
#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#-----------------------------------------------------------
#Software: FipsSHOP
#Vendor: http://fipsasp.com/
#Method: SQL Injection
#
#PoC:
#http://target/path/index.asp?cat=[SQL INJECTION]
#http://target/path/index.asp?page=detail&did=[SQL INJECTION]
#
#
#Contact: [email protected]
fisasp.com doesn't exist as my whois cl
