Search (keywords):  SOFT ARTICLES TIPS & TRICKS SECURITY LINKS NEWS MAN DOCUMENTATION

<< Previous INDEX Search src / Print Next >>

Date: 25 Mar 2008 07:32:31 -0000
From: arsalan1991@gmail.com
To: bugtraq@securityfocus.com
Subject: aeries browser interface(ABI) 3.8.3.14 Remote SQL Injection
X-Virus-Scanned: antivirus-gw at tyumen.ru

Discovered By : Arsalan Emamjomehkashan

aeries browser interface(ABI) 3.8.3.14 Remote SQL Injection

Website:http://aeries.com/
SQL injection:
GradebookOptions.asp?GrdBk=SQL
loginproc.asp If you post variable "SchlCode"
XSS:
UserName variable on loginproc.asp and usr on Login.asp

<< Previous INDEX Search src / Print Next >>

Партнёры:

Хостинг: