22 matches found
aflog 1.01 comments.php XSS / SQL Injection Vulnerability
Exploit for unknown platform in category web applications ========================================================= aflog 1.01 comments.php XSS / SQL Injection Vulnerability ========================================================= Name: aflog 1.01 and possibly earlier Webiste: http://aflog.org/...
aflog 1.01 - Cross-Site Scripting / SQL Injection
Name: aflog 1.01 and possibly earlier Webiste: http://aflog.org/ Vulnerability type: SQL Injection comments.php and XSS Author: shinmai, 2008-01-22 Description: SQL INJECTION: SQL injection is possible in comments.php for the GET variable 'id', like this:...