Дополнительная информация

Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

SiteXpress SQL Injection

[Full-disclosure] Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability

ASPintranet SQL Injection

[SA22842] Ampache Unauthorized Guest Access

From:	Advisory_(at)_Aria-Security.net <Advisory_(at)_Aria-Security.net>
Date:	14 ноября 2006 г.
Subject:	SiteXpress SQL Injection

#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#Original Advisory : http://aria-security.net/advisory/SiteXpress.txt
#-----------------------------------------------------------
#Software: SiteXpress E-Commerce System
#Method : SQL Injection
#
#PoC:
#http://target/[path]/
#http://target/[path]/dept.asp?id=[SQL]
#
#Contact: Advisory@aria-security.net