BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
PHP pro bid v 6.04 SQL injection
Sep 19 2008 09:14AM
Jan van Niekerk (jvnkrk gmail com)
Affected software: PHP pro bid v 6.04 (as at 2008-09-11)
Vendor description: The Leading Proffessional (sic) Auction Script
Software available online today written in PHP/ Mysql
Impact: SQL injection
Description:
categories.php and other pages of php pro bid accept user-supplied
order-by and ASC...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Vendor description: The Leading Proffessional (sic) Auction Script
Software available online today written in PHP/ Mysql
Impact: SQL injection
Description:
categories.php and other pages of php pro bid accept user-supplied
order-by and ASC...
[ more ]