Vwar v1.5.0 <= Sql Injection and XSS vuln.

2006.08.08
Credit: MFox
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-79

IHST > Iran HackerZ Security Team (WhiteHat Part) ------------------------------------------------- Vendor : www.vwar.de vuln. Version = v1.5.0 and lower Credits : MFox Contact : mfoxhacker (at) gmail (dot) com [email concealed] HomePage : www.hackerz.ir ------------------------------------------------- Proof of Concept Http://[Target]/[Path]/war.php?page=[SQL] & [XSS] ------------------------------------------------- Gr33tZ : S3rv3r_Hack3r - Hessam-X - BlOod_MoOn - Rs_VB - Rh_b_H - S433d_Only_LinuX - saTTar_li -------------------------------------------------


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2022, cxsecurity.com

 

Back to Top