Computer Security

Security Advisory: Netjuke 1.0-rc2 - sql injection & XSS
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [Aria-Security Team] social-networkin SQL Injection

  NuclearBB Alpha 2 Remote File Inclusion

  Husrev Forums v2.0.1:PoWerBoard Sql

  Proxy Anket v3.0.1 Sql injection Vulnerable

From:cod3in_(at)_gmail.com <cod3in_(at)_gmail.com>
Date:11.09.2007
Subject:Netjuke 1.0-rc2 - sql injection & XSS

The Netjuke is a Web-Based Audio Streaming Jukebox powered by PHP 4, a database and all the MP3, Ogg Vorbis and other format files that constitute your digital music collection. Supports images, language packs, multi-level security, random playlists, etc

http://sourceforge.net/projects/netjuke
===================================

/explore.php?do=list.artists&ge_id=SQL
/xml.php?do=show.tracks&id=SQL

/alphabet.php?do=alpha.albums&val=XSS
/random.php/XSS
/admin/hidden.php/XSS
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server