[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

2 SQL Injection in d3jeeb

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: 2 SQL Injection in d3jeeb
From: S3ude@xxxxxxxxxxx
Date: 26 Feb 2006 21:16:13 -0000

Software: D3Jeeb 
Web Site: http://www.tl4s.com
Versions: tested on D3Jeeb Pro 3
Type: SQL Injection
Class: Remote


Vulnerable script:
fastlinks.php
catogary.php

Exploit :

1-

http://www.target.com/fastlinks.php?catid=[SQL]

2-

http://www.target.com/catogary.php?catid=[SQL]

Discovered by: SAUDI

L-G-H Team

http://www.lezr.com

Regards ///

Prev by Date: [ISecAuditors Advisories] IMAP/SMTP Injection in SquirrelMail
Next by Date: PixelArtKingdom TopSites Remote Command Exucetion
Previous by thread: [ISecAuditors Advisories] IMAP/SMTP Injection in SquirrelMail
Next by thread: PixelArtKingdom TopSites Remote Command Exucetion
Index(es):
- Date
- Thread