Lucene search

tcas.txt

🗓️ 21 Nov 2006 00:00:00Reported by benjamin mossType

packetstorm🔗 packetstormsecurity.com👁 22 Views

The Classified Ad System, multiple XSS & SQL injection, medium ris

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`vendor site: http://www.rockfordarea.com/  
product : The Classified Ad System   
bug: multiple xss (get) & injection sql  
risk : medium  
  
injection sql (get):  
/default.asp?action=view&main='[sql]  
  
  
injection sql (post) :  
just post your query into the search engine   
  
xss :  
/default.asp?action=view1&cat=[xss]  
/default.asp?action=view1&cat=40&main=[xss]  
  
  
  
  
laurent gaffié & benjamin mossé  
http://s-a-p.ca/  
contact: [email protected]  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Nov 2006 00:00Current

7.4High risk

Vulners AI Score7.4