7 lines
No EOL
527 B
Text
7 lines
No EOL
527 B
Text
source: https://www.securityfocus.com/bid/13395/info
|
|
|
|
A remote SQL injection vulnerability affects MetaBid Auctions. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in SQL queries.
|
|
|
|
An attacker may exploit this issue to manipulate SQL queries to the underlying database. This may facilitate the theft of sensitive information, potentially including authentication credentials, and data corruption.
|
|
|
|
http://example.com/metabid/item.asp?intAuctionID='SQL_INJECTION |