9 lines
No EOL
731 B
Text
9 lines
No EOL
731 B
Text
source: https://www.securityfocus.com/bid/25026/info
|
|
|
|
AlstraSoft Affiliate Network Pro is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting isues and SQL-injection issues.
|
|
|
|
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database.
|
|
|
|
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitrary script code in the context of the webserver process, access or modify data, or exploit latent vulnerabilities in the underlying database.
|
|
|
|
http://www.example.com/affiliate/merchants/index.php?Act= uploadProducts&pgmid=41%20or%201=1 |