AOH :: HP Unsorted L :: BU-1723.HTM

LDF (Default.asp) Sql Injection Vulnerability



LDF (Default.asp) Sql Injection Vulnerability
LDF (Default.asp) Sql Injection Vulnerability



Product : LDF =0D
vendor : www.ldf.22.cn=0D 
Vulnerable Versions : All =0D
=0D
Default.asp Page has an issue on validating "Page" parameter , It could be exploited by attacker & attacker can inject arbitrary Sql Commands=0D
=0D
http://www.example.com/[ldf path]/default.asp?page=[SQL COMMAND]=0D 
=0D

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.