pGB 2.12 kommentar.php SQL injection flaws and fixes-vulnerability warning-the black bar safety net

2012-01-20T00:00:00
ID MYHACK58:62201232951
Type myhack58
Reporter 佚名
Modified 2012-01-20T00:00:00

Description

Title: pGB 2.12 SQL Injection Vulnerability

Author: 3spi0n

Software website: http://www.powie.de/

Test platform: BackTrack 5 - Win7 Ultimate

Platform: Php

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>

[$] The defect file:

[~] kommentar.php

[$] Test site:

[~] http://www.badguest.cn /kommentar. php? id=1 1 7'

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>

Dar bi Koridor Benimki, Kendimi Aradigim.

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>

Contact: Twitter.Com/RigidusCO - Facebook.Com/3spi0ne

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>

Provide solution

Filtered kommentar. php page id of the input parameters

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>