Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:15070
HistoryNov 16, 2006 - 12:00 a.m.

eShopping SQL Injection

2006-11-1600:00:00
vulners.com
17

#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#Original Advisory : http://aria-security.net/advisory/ecommercestore.txt
#-----------------------------------------------------------
#Software: E Commerce Store Shop Builder
#Method : SQL Injection

#PoC:
#http://target/path/fulldetails.asp?brand=&amp;idcategory=&amp;scata=&amp;idProduct=[SQL INJECTION]
#http://target/path/categories.asp?id=[SQL INJECTION]

#Contact: [email protected]