[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
SQL Injection in DCI-Taskeen
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: SQL Injection in DCI-Taskeen
- From: xx_hack_xx_2004@xxxxxxxxxxx
- Date: 25 Feb 2006 19:45:20 -0000
Hello
Vulnerable: DCI-Taskeen v1.03
http://www.dci-designs.com
Exploit :
http://example.com/basket.php?action=addex&id=[SQL]
http://example.com/basket.php?action=[SQL]
http://example.com/basket.php?action=addr&id=[SQL]
http://example.com/cat.php?do=cat&page=1&id=[SQL]
http://example/cat.php?do=cat&page=[SQL]
Discovery by Linux_Drox
http://www.lezr.com
Best Regards