BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
HotWeb Rentals "PageId" SQL Injection Vulnerability Dec 27 2010 11:57PM
non customers (non-customers operamail com)
HotWeb Rentals "PageId" SQL Injection Vulnerability

PRODUCT >>> http://www.hotwebscripts.co.uk/

Input passed to the "PageId" parameter in default.asp is not properly sanitised before being used in
SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

POC >>...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus