Application:  Ocean12 Mailing List Manager Gold

Vendor Name: Ocean12

Vendors Url:  http://ocean12tech.com/

Bug Type:  Ocean12 Mailing List Manager Gold SQL Injection vulnerability

Exploitation: Remote

Google Dork:  "Maintained with the Ocean12 Mailing List Manager Gold"

 

Example

http://ocean12tech.com/products/o12mailgold/demo/default.asp?Page=2&Email=[S
QL]&Password=pass&Password2=pass&FirstName=name&LastName=lastname&MailType=0

 

Credits:

Charalambous Glafkos

Email:  glafkos (at) astalavista (dot) com

___________________________________________

ASTALAVISTA - the hacking & security community

www.astalavista.com

www.astalavista.net

 

Best Regards,
Charalambous Glafkos ( nowayout )
__________________________________________
ASTALAVISTA - the hacking & security community
 <http://www.astalavista.com/> www.astalavista.com
 <http://www.astalavista.net/> www.astalavista.net