TUCoPS :: HP Unsorted L :: bu-1723.htm

LDF (Default.asp) Sql Injection Vulnerability
LDF (Default.asp) Sql Injection Vulnerability
LDF (Default.asp) Sql Injection Vulnerability


Product : LDF =0D
vendor : www.ldf.22.cn=0D 
Vulnerable Versions : All =0D
=0D
Default.asp Page has an issue on validating "Page" parameter , It could be exploited by attacker & attacker can inject arbitrary Sql Commands=0D
=0D
http://www.example.com/[ldf path]/default.asp?page=[SQL COMMAND]=0D 
=0D

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH