[Full-disclosure] ZDI-07-058: Oracle E-Business Suite SQL Injection Vulnerability

reepex reepex at gmail.com
Thu Nov 1 03:55:36 GMT 2007

Previous message: [Full-disclosure] spammer wades into US Presidential race
Next message: [Full-disclosure] ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

post auth sql injection in random admin console - lulz

On 10/31/07, zdi-disclosures at 3com.com <zdi-disclosures at 3com.com> wrote:
> The specific flaw exists in the okxLOV.jsp page in the Administration
> console.

Previous message: [Full-disclosure] spammer wades into US Presidential race
Next message: [Full-disclosure] ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Full-Disclosure is hosted and sponsored by Secunia.