Google Search: “inurl:/site/articles.asp?idcategory=”
l0om rates this entry 8 out of 10.
Submitted: 2004-10-26 00:00:00
Added by: l0om
Dwc_Articles, is an ASP application designed to add Featured, Recent and Popular News through an easy to use administration area. Other features: Design Packages, Add, Modify, Deactive through HTML/Wysiwyg Editor, Upload, categories, Multiple Users and more.Nearly all scripts suffer from possible sql injections. This may lead an attacker to change websites content or even worse, a login as an admin.vulnerable: <= 1.6 are vulnerable (others not yet confirmed)Status: No email address or phone number known, so vendor could not be contacted.author: l0om (http://www.excluded.org)vendor: www.distinctwebcreations.com Possible workaround: remove or rename the admin scripts.