BugTraq
Back to list
|
Post reply
Link Exchange Lite [injection sql]
Nov 21 2006 07:33PM
saps audit gmail com
vendor site: http://softacid.net/
product:Link Exchange Lite
bug: injection sql
risk : high
injection sql (post) :
/search.asp
post your sql query into the search engine field
injection sql (get):
/linkslist.asp?psearch='[sql]
laurent gaffié & benjamin mossé
http://s-a-p.ca/
contact: saps.audit (at) gmail (dot) com [email concealed]
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
product:Link Exchange Lite
bug: injection sql
risk : high
injection sql (post) :
/search.asp
post your sql query into the search engine field
injection sql (get):
/linkslist.asp?psearch='[sql]
laurent gaffié & benjamin mossé
http://s-a-p.ca/
contact: saps.audit (at) gmail (dot) com [email concealed]
[ reply ]