SQL Injection Vulnerability in Ektronix Website Building System
Ektrosys developed a general-purpose CMS program for schools, education and other sites. The product has a SQL injection vulnerability, the vulnerability URL is: http://www.sxzkc.cn/BlogManage/Message/ManageInBoxMessage.aspx, the vulnerability parameter is: txtInBoxSearch The attacker can use the...