BugTraq
Back to list
|
Post reply
modules name(Downloads)SQL Injection Exploit
May 05 2006 01:44AM
Mster-X hotmail com
(1 replies)
Re: modules name(Downloads)SQL Injection Exploit
May 08 2006 02:42AM
Paul Laudanski (zx castlecops com)
(1 replies)
What application are you talking about?
On 5 May 2006 Mster-X (at) hotmail (dot) com [email concealed] wrote:
> ********************
> By: Mr-X
> Email: Mster-X (at) hotmail (dot) com [email concealed]
> Subject: modules name(Downloads)SQL Injection
> ********************
>
> example:-
> /modules.php?/modules.php?name=Downloads&d_op=viewdownload&cid=[SQL]
>
> ********************
>
--
Paul Laudanski, Microsoft MVP Windows-Security
Submit phish: www.castlecops.com/pirt
[de] http://de.castlecops.com
[en] http://castlecops.com
[wiki] http://wiki.castlecops.com
[ reply ]
Re: modules name(Downloads)SQL Injection Exploit
May 10 2006 10:04PM
znx (znxster gmail com)
Privacy Statement
Copyright 2010, SecurityFocus
On 5 May 2006 Mster-X (at) hotmail (dot) com [email concealed] wrote:
> ********************
> By: Mr-X
> Email: Mster-X (at) hotmail (dot) com [email concealed]
> Subject: modules name(Downloads)SQL Injection
> ********************
>
> example:-
> /modules.php?/modules.php?name=Downloads&d_op=viewdownload&cid=[SQL]
>
> ********************
>
--
Paul Laudanski, Microsoft MVP Windows-Security
Submit phish: www.castlecops.com/pirt
[de] http://de.castlecops.com
[en] http://castlecops.com
[wiki] http://wiki.castlecops.com
[ reply ]