4 matches found
ActiveBuyandSell 6.2 Blind SQL Injection
? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: buyersend.asp catid Blind SQL Injection Vulnerability Vendor: :www.activewebsoftwares.com Software: ActiveBuyandSell v 6.2 author: R3d-D3v!L Date: 18.dec.2009 T!ME: 12:00 am ? Home: WwW.xP10.ME ? contact:...
ActiveBuyandSell v6.2 (buyersend.asp catid) Blind SQL Injection
Exploit for unknown platform in category web applications ============================================================================= ActiveBuyandSell v6.2 buyersend.asp catid Blind SQL Injection Vulnerability ============================================================================= ?...
ActiveBuyandSell 6.2 - buyersend.asp?catid Blind SQL Injection
ActiveBuyandSell 6.2 - buyersend.asp?catid Blind SQL Injection ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: buyersend.asp catid Blind SQL Injection Vulnerability Vendor: :www.activewebsoftwares.com Software: ActiveBuyandSell v 6.2 author: R3d-D3v!L...
ActiveBuyAndSell BuyerSend.ASP SQL注入漏洞
ActiveBuyAndSell是一款基于ASP的WEB应用程序。 ActiveBuyAndSell不正确过滤用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可获得敏感信息。 问题是'BuyerSend.ASP'脚本对用户提交的'catid'参数缺少过滤,提交恶意SQL代码作为参数数据,可导致更改原来的SQL逻辑,获得敏感信息。 Active Web Softwares ActiveBuyandSell 6.2 目前没有解决方案提供: http://activewebsoftwares.com/productinfo.aspx?productid=8&Tabopen=...