BugTraq
2 SQL Injection in d3jeeb Feb 26 2006 09:16PM
S3ude Hotmail com
Software: D3Jeeb
Web Site: http://www.tl4s.com
Versions: tested on D3Jeeb Pro 3
Type: SQL Injection
Class: Remote

Vulnerable script:
fastlinks.php
catogary.php

Exploit :

1-

http://www.target.com/fastlinks.php?catid=[SQL]

2-

http://www.target.com/catogary.php?catid=[SQL]

Discovered by: SAUDI

L-G-H Team

http://www.lezr.com

Regards ///

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus