source: wwwsecurityfocuscom/bid/8159/info
It has been reported that VP-ASP does not sufficiently sanitize user input passed to the shopexdasp script contained in the software As a result, it may be possible for remote attackers to embed SQL commands which are to be passed to the underlying database engine
#!/usr/bin/perl
# PRIVATE***P ...
source: wwwsecurityfocuscom/bid/8159/info
It has been reported that VP-ASP does not sufficiently sanitize user input passed to the shopexdasp script contained in the software As a result, it may be possible for remote attackers to embed SQL commands which are to be passed to the underlying database engine
#!/usr/bin/perl -w
$pamer = ...