9 matches found
EUVD-2006-6115
Malware in sbrugna...
Link Exchange Lite 1.0 - Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/21225/info Link Exchange Lite is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacke...
Link Exchange Lite SQL 注入漏洞
Link Exchange Lite是一款基于ASP的WEB应用程序。 Link Exchange Lite不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行sql注入攻击,获得敏感信息。 问题是由于'categories.asp'脚本对用户提交的WEB参数缺少过滤,提交恶意sql查询作为参数数据,可更改原来的sql逻辑,获得敏感信息。 Softacid Link Exchange Lite 1.0 http://softacid.net/ http://www.example.com/categories.asp?catID=SQL Injection...
CVE-2006-6132
Multiple SQL injection vulnerabilities in Link Exchange Lite allow remote attackers to execute arbitrary SQL commands via 1 the search engine field to search.asp and 2 psearch parameter to linkslist.asp...
CVE-2006-6132
Multiple SQL injection vulnerabilities in Link Exchange Lite allow remote attackers to execute arbitrary SQL commands via 1 the search engine field to search.asp and 2 psearch parameter to linkslist.asp...
CVE-2006-6132
CVE-2006-6132 describes multiple SQL injection vulnerabilities in Link Exchange Lite. The affected components are the search functionality (the search engine field in search.asp) and the psearch parameter in linkslist.asp. The underlying issue allows remote attackers to execute arbitrary SQL comm...
PT-2006-6768 · Unknown · Link Exchange Lite
Name of the Vulnerable Software and Affected Versions: Link Exchange Lite affected versions not specified Description: The issue concerns SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. This can be achieved via two methods: - the search engine field to...
lel-sql.txt
vendor site: http://softacid.net/ product:Link Exchange Lite bug: injection sql risk : high injection sql post : /search.asp post your sql query into the search engine field injection sql get: /linkslist.asp?psearch='sql laurent gaffié & benjamin mossé http://s-a-p.ca/ contact: [email protected]...
Link Exchange Lite [injection sql]
vendor site: http://softacid.net/ product:Link Exchange Lite bug: injection sql risk : high injection sql post : /search.asp post your sql query into the search engine field injection sql get: /linkslist.asp?psearch='sql laurent gaffi & benjamin moss http://s-a-p.ca/ contact: [email protected]...