Ripe Website Manager 0.8.x - '/pages/delete_page.php?id' SQL Injection | Gerki | Теневой Форум про Заработок и ИБ

Exploiter

Хакер

21 Дек 2022

EDB-ID: 30518

Проверка EDB

Пройдено

Автор: NAGENDRA KUMAR G

Тип уязвимости: WEBAPPS

Платформа: PHP

CVE: cve-2007-4522

Дата публикации: 2007-08-22

Код:

source: https://www.securityfocus.com/bid/25406/info

Ripe Website Manager is prone to multiple input-validation vulnerabilities, including HTML- and SQL-injection issues.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

These issues affect versions prior to Ripe Website Manager 0.8.10. 

http://example.com/admin/pages/delete_page.php?id=0 or 1=1

Источник: www.exploit-db.com

Поиск

Exploit Ripe Website Manager 0.8.x - '/pages/delete_page.php?id' SQL Injection

Exploiter

Похожие темы