Grandora printmain.asp ID Variable SQL Injection

2006-11-21T18:35:52
ID OSVDB:31985
Type osvdb
Reporter OSVDB
Modified 2006-11-21T18:35:52

Description

Manual Testing Notes

/printmain.asp?ID='[sql]

References:

Vendor URL: http://www.grandora.com/ Related OSVDB ID: 31984 Related OSVDB ID: 31990 Related OSVDB ID: 31991 Related OSVDB ID: 31992 Related OSVDB ID: 31986 Related OSVDB ID: 31987 Related OSVDB ID: 31982 Related OSVDB ID: 31983 Related OSVDB ID: 31988 Related OSVDB ID: 31989 Other Advisory URL: http://www.securiteam.com/windowsntfocus/6N00L0AHFA.html