Re: [Full-disclosure] ZDI-07-058: Oracle E-Business Suite SQL Injection Vulnerability

reepex Wed, 31 Oct 2007 19:56:05 -0800

post auth sql injection in random admin console - lulz

On 10/31/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> The specific flaw exists in the okxLOV.jsp page in the Administration
> console.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] ZDI-07-058: Oracle E-Business Suite SQL Injection Vulnerability

Reply via email to