Lucene search

ablespace-sql.txt

🗓️ 27 May 2008 00:00:00Reported by s3rv3r_hack3rType

packetstorm🔗 packetstormsecurity.com👁 17 Views

Security vulnerability in ablespace softwar

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`By : s3rv3r_hack3r (Ali Jasbi)  
Vendor : abk-soft.com  
Name : ablespace  
version : All Version   
Risk : Very high  
++++++++++++++++++++++++++++++++++++++++++++  
adv_cat.php >>>  
if(!empty($_GET['cat_id'])){  
$str = '';  
DB::query("select * from adv_cats where id=".to_sql(get_param('cat_id'),"Number"));  
++++++++++++++++++++++++++++++++++++++++++++  
You can exploit this vulnerability like this :  
Http://domainname.com/ablespace/adv_cat.php?cat_id=[sql inection]  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

27 May 2008 00:00Current

7.4High risk

Vulners AI Score7.4