Recipes Script Silver Edition SQL Injection

2011.07.23

Credit: Lazmania61 | Bug Researchers

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

# Exploit Title: Recipes website Script Silver Edition SQL Injection Vulnerability

# Date: 21/07/2011

# Author: Lazmania61 | Bug Researchers

#Demo   : http://www.thewebcraft.com/new_recipes/

# Tested on: Windows 7
# Greetz : HeRoTuRk ,Err0r , Darkknight , Bug Researchers Members

# http://www.thewebcraft.com/new_recipes/recipes/viewRecipe.php?recipeId=44

# http://www.thewebcraft.com/new_recipes/recipes/viewRecipe.php?recipeId=44?a

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Recipes Script Silver Edition SQL Injection

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.