CVE-2008-0358

CVE-2008-0358 affects Pixelpost 1.7. The vulnerability is a SQL injection in the index.php component, exploitable via the remote input parameter parent_id . The underlying cause is insufficient sanitization of the user-supplied value, allowing an attacker to inject arbitrary SQL commands through ...

pixelpost-sql.txt

!/usr/bin/php -q -d shortopentag=on ?php // magicquotesgpc needs to be off errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc3 print "-------------------------------------------------------------------------\r\n"; print " PixelPost 1.7 Blind SQL Injection...

PixelPost 1.7 Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ?php // magicquotesgpc needs to be off errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc3 print "-------------------------------------------------------------------------\r\n"; print "...

PixelPost 1.7 - Blind SQL Injection

!/usr/bin/php -q -d shortopentag=on ?php // magicquotesgpc needs to be off errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc3 print "-------------------------------------------------------------------------\r\n"; print " PixelPost 1.7 Blind SQL Injection...