Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
ASP Product catalog SQL injection vulnerability Sep 30 2007 02:25AM
joseph giron13 gmail com
ASP Product catalog SQL injection vulnerability.

A nice little SQL injection vulnerability exists within ASP Product Catalog. The application fails to check for bad input from GET'd variables used in SQL query operations. In this case, the variable [cid] can be used for SQL injection queries. Exam...

[ more ]  




 

Privacy Statement
Copyright 2008, SecurityFocus