Ads Bit 5 Blog SQL Injection & Authentication Bypass Vulnerability Tuesday, 14 February 2006 -----------------Description--------------- Vulnerable script: processlogin.php Variables $_POST[username] and $_POST[password] isnt properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code and log in without password. --------------Exploit---------------------- Available at: http://evuln.com/vulns/31/exploit/bt/ --------------Solution--------------------- No Patch available. --------------Credit----------------------- Discovered by: Aliaksandr Hartsuyeu (eVuln.com)   < Prev   Next > [ Back ]

Main Menu SpamAlerts | Windows | Linux | Tutorials | Excell | WhitePapers | News | Spam | Virus Windows Focus VNews Vulnerability Hacking Sql Injection map Downloads Affiliates Online Store Free Ringtones Seo Directory IWebListin Jobs in India Freshers Jobs listings. Winkeyfinder

Copyright 2005-2007 SpamAlertz.com, Content on this site is From variuos other emails, and Advisories.