Bugtraq mailing list archives

gNews Publisher SQL Injection Vulnerabilites

From: Advisory () aria-security net
Date: 20 Nov 2006 07:38:33 -0000

Aria-Security's Research Team>
#<www.Aria-Security.Com For further help>
#Original Advisory at:
#http://www.aria-security.com/forum/showthread.php?t=37
#-----------------------------------------
#
#Software: gNews Publisher
#Vendor: http://gazatem.com
#Method: SQL Injection 
#
#Poc:
#
#http://target/categories.asp?catID=[SQL Injection]
#http://target/categories.asp?editorID=[SQL Injection]
#
#Contact Us:
#Advisory () Aria-Security net

Current thread:

gNews Publisher SQL Injection Vulnerabilites Advisory (Nov 20)