[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Webspell 4.X safe_query Bypass Vulnerability

Author
silent vapor
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-14262
Category
web applications
Date add
30-09-2010
Platform
php
============================================
Webspell 4.X safe_query Bypass Vulnerability
============================================

################# INFORMATION ##################################################
+Name : Webspell 4.X safe_query bypass Vulnerability
+Author : silent vapor
+Date   : 29.09.2010
+Script  : webspell
+Price : free
+Language :PHP
+Discovered by silent vapor
+Underground Agents
+Greetz to Team-Internet, 4004-Security-Project, Easy Laster
################################################################################
 
+Vulnerability : webspell_settings.php "function safe_query"
 
+Exploitable   : %20UNION+/**/+SELECT%20
 
################################################################################



#  0day.today [2024-11-15]  #