TUCoPS :: Web :: Apps :: b06-2672.htm

Pro Publish SQL Injection and XSS Vulnerabilities
Pro Publish SQL Injection and XSS Vulnerabilities
Pro Publish SQL Injection and XSS Vulnerabilities


---------------------------------------------=0D
 Pro Publish SQL Injection and XSS Vulnerabilities=0D
---------------------------------------------=0D
 =0D
 Site:=0D
http://www.deltascripts.com/download/=0D 
=0D
 Bug:=0D
1. SQL Injection :=0D
http://victim/propublish/cat.php?catid='=0D 
  =0D
=0D
2. XSS :=0D
 =0D
1- =0D">http://victim/propublish/art.php?artid=">=0D 
=0D
2- =0D">http://victim/propublish/cat.php?catname=">=0D 
=0D
---------------------------------------------=0D
 Source :=0D
http://soot.shabgard.org/bugs/propublish.txt=0D 
=0D
 Credit :=0D
  Soot =0D
  Shabgard Security Team=0D
http://www.shabgard.org =0D 
=0D
 Greetz : =0D
  Hregy,Elite,Bl2k,Littlehacker,Sasan_4shir=0D
---------------------------------------------=0D

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH