BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
HC NEWSSYSTEM 1.0-4 (index.php "ID") Blind SQL Injection Mar 09 2007 09:17PM
UniquE UniquE-Key Org
HC NEWSSYSTEM 1.0-4 (index.php "ID") Blind SQL Injection

Type :

SQL Injection

Release Date :

{2007-03-08}

Product / Vendor :

HC Design News Publisher.

http://www.hcdesign.at/demo

Bug :

http://localhost/script/index.php?option=news&aktion=komm&ID=-SQL Inj.-

SQL Inj Code :

Admin Username/Pa...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus