HNS MAIN FEED
Tuesday, 16:12 EST
- OpenDNSSEC 1.0.0 released
- Microsoft releases giant patch collection
- 81% percent of e-mail links to malware
- Unaware of the dangers, most teens share personal info online
- Data harvested from Facebook used in boiler room scams
- A closer look at USB Secure 1.3.0
- Safety tips for online dating
- Researcher hacks security encryption chip found on millions of PCs
- Is authenticated XSS a problem?
- Online shopping safety: Consumers hold retailers responsible
- Seagate ships the Savvio 10K.4 hard drive
- Political hacktivism and the exploitation of tragedies is on the rise
ActiveWebSoftwares Active Bids "default.asp" SQL Injection
24 November 2009
ActiveWebSoftwares Active Bids is a web-based application implemented in ASP. The application is exposed to an SQL injection issue because it fails to sufficiently sanitize user-supplied data to the "catid" parameter of the "default.asp" script before using it in an SQL query.
Ref: http://www.securityfocus.com/bid/37047
09.47.37 - CVE: Not Available
Platform: Web Application - SQL Injection
Ref: http://www.securityfocus.com/bid/37047
09.47.37 - CVE: Not Available
Platform: Web Application - SQL Injection