|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
2 SQL Injection in d3jeeb
S3ude
Hotmail.com
Date: Sun Feb 26 2006 - 15:16:13 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Software: D3Jeeb
Web Site: http://www.tl4s.com
Versions: tested on D3Jeeb Pro 3
Type: SQL Injection
Class: Remote
Vulnerable script:
fastlinks.php
catogary.php
Exploit :
1-
http://www.target.com/fastlinks.php?catid=[SQL]
2-
http://www.target.com/catogary.php?catid=[SQL]
Discovered by: SAUDI
L-G-H Team
http://www.lezr.com
Regards ///
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]