2 SQL Injection in Fantastic News

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: 2 SQL Injection in Fantastic News
From: S3ude@xxxxxxxxxxx
Date: 26 Feb 2006 21:13:37 -0000

Software: Fantastic News 
Web Site: http://www.fscripts.com
Versions: 2.1.1
Type: 2 SQL Injection 
Class: Remote

Exploit :

1-

http://www.target.com/news.php?action=news&category=|sql

2-

http://www.target.com/news.php?page=|sql


Discovered by: SAUDI

L-G-H Team

http://www.lezr.com

Regards ///

Prev by Date: Mail Transport System Professional--Open Relay Hole
Next by Date: CGI Calendar XSS Vulnerability
Previous by thread: Mail Transport System Professional--Open Relay Hole
Next by thread: CGI Calendar XSS Vulnerability
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux