Virtual Support Office XP MyIssuesView.asp脚本远程SQL注入漏洞

BUGTRAQ ID: 28247 Virtual Support Office XP是基于Web的帮助台软件。 Virtual Support Office-XP（VSO-XP）的MyIssuesView.asp模块没有正确地验证对IssueID参数的输入便将其用到了SQL查询中，这允许远程攻击者通过提交特制的SQL查询请求执行SQL注入攻击。 Advanced Data Solutions Virtual Support Office-XP 2 Advanced Data Solutions -----------------------...

CVE-2008-1354

SQL injection vulnerability in MyIssuesView.asp in Advanced Data Solutions Virtual Support Office-XP VSO-XP allows remote attackers to execute arbitrary SQL commands via the IssueID parameter...

Sql injection

SQL injection vulnerability in MyIssuesView.asp in Advanced Data Solutions Virtual Support Office-XP VSO-XP allows remote attackers to execute arbitrary SQL commands via the IssueID parameter...

Office XP Remote SQL Injection

Aria-Security Team Persian Security Network http://forum.Aria-Security.com ENGLISH FORUM! -------------------------------------------------- Shoutz: Aura, Null, Kinglet Office XP Remote SQL Injection Vendor: vso-xp.com Vulnerable File: MyIssuesView.asp Original Adivosry:...