PhxContacts carnet.php Multiple Variable SQL Injection

2006-03-28T01:23:22
ID OSVDB:26555
Type osvdb
Reporter OSVDB
Modified 2006-03-28T01:23:22

Description

Manual Testing Notes

http://[target]/carnet.php?view_cat=&all_lines=true&motclef=[sql] http://[target]carnet.php?view_cat=2&nbr_line_view=[sql]

References:

Related OSVDB ID: 26556 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-03/0561.html CVE-2006-1536 Bugtraq ID: 17306