| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <200310151631.h9FGVxCX034142@mailserver2.hushmail.com> From: auto67574 at hushmail.com (auto67574@...hmail.com) Subject: SQL Injection from SPAM message :) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 As I am getting tired of getting these: "... a g3n3ric v3rsion of \/1agra ... The d0ct0r c0nsultat1on and sh1pp1ng is fr33, and your 0rd3r w1ll arr1v3 at your d00r qu1ck1y and d1scr3t3ly. http://www.onmarclass.com/host/default.asp?id=yr1" I decided to check for SQL Injection :)... well ... reader is left to think what can be done http://www.onmarclass.com/host/default.asp?id=y2'r1 Microsoft OLE DB Provider for ODBC Drivers error '80040e14' [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression 'affil_ID='y2'r1''. /host/utilities.asp, line 13 -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.3 wkYEARECAAYFAj+NdlIACgkQEEhLYD+KBOIEUACdELlLbtoZteWNvuPBECYEkwoQ+PEA ni/k33U+yMZA7dxAMukYD1fbR/2d =yR7y -----END PGP SIGNATURE----- Concerned about your privacy? Follow this link to get FREE encrypted email: https://www.hushmail.com/?l=2 Free, ultra-private instant messaging with Hush Messenger https://www.hushmail.com/services.php?subloc=messenger&l=434 Promote security and make money with the Hushmail Affiliate Program: https://www.hushmail.com/about.php?subloc=affiliate&l=427
Powered by blists - more mailing lists