Home page logo
/

bugtraq logo Bugtraq mailing list archives

Blog System v1.2 Multiple SQL Injection Vulnerabilities
From: vipsta () gmail com
Date: 5 Dec 2005 20:58:17 -0000

Blog System v1.2 (http://www.netartmedia.net/blogsystem/)
is vulnerable to 2 SQL injection vulnerabilities for failure to correctly sanitize SQL parameters.

http://[HOST]/index.php?mode=home&cat=-99[SQL CODE]

http://[HOST]/blog.php?user=[USER]&note=-99[SQL CODE]



  By Date           By Thread  

Current thread:
  • Blog System v1.2 Multiple SQL Injection Vulnerabilities vipsta (Dec 05)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]