<<< Date Index >>>     <<< Thread Index >>>

[Aria-Security Team] FipsSHOP SQL Injection



#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >

#-----------------------------------------------------------
#Software: FipsSHOP
#Vendor: http://fipsasp.com/
#Method: SQL Injection
#
#PoC:
#http://target/path/index.asp?cat=[SQL INJECTION]
#http://target/path/index.asp?page=detail&did=[SQL INJECTION]
#
#
#Contact: Advisory@xxxxxxxxxxxxxxxxx
fisasp.com doesn't exist as my whois cl