-
what happened:
-
sql injection on password field (to access the page)
-
sql injection on product search (to access user data)
-
who is the attacker: 192.168.200.63
-
when was the attack: 26.08.2004 16:21:20
-
what content was disclosed through the attack:
-
customer data (including credit card info and addresses)