SecurityAlert : 3696 CVE : CVE-2008-0943 SecurityRisk : Medium (About) Remote Exploit : Yes Local Exploit : No Exploit Available : Yes Credit : Arsalan Emamjomehkashan Published : 26.02.2008
Affected Software :
aeries browser interface(ABI) 3.7.2.2
Advisory Content :
Discovered By : Arsalan Emamjomehkashan
admin (at) arsalank (dot) com [email concealed]
aeries browser interface 3.7.2.2 SQL Injection
Website:http://aeries.com/
Demo:you can test it on
http://demo.aeries.com/abi/
Comments.asp?&FC=SQL
Labels.asp?&Term=SQL
ClassList.asp&Term=SQL
--------------------------------
Aria-Security Team
httP://Aria-Security.Net
Feedback :
If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com.