Thank you for finding this out. This is issue has been fixed and applied to our NetAuctionHelp software and Classified Ads software as well as our customers using it. NetAuctionHelp Support Team no-reply-15 wrote: > > Hello, > > I got you another one, > > there's the same problem with your admin page. just try 'having 1=1-- as > user login. > > > > Regards, > > The-0utl4w > > > > > > P.S: see our Advisory on your other product (ads) > > -- View this message in context: http://www.nabble.com/Aria-Security.net%3A-NetAuctionHelp-SQL-Injection-tf4857189.html#a14188418 Sent from the Bugtraq mailing list archive at Nabble.com.
