AOH :: HP Unsorted N :: TB12457.HTM

Netjuke 1.0-rc2 - sql injection & XSS



Netjuke 1.0-rc2 - sql injection & XSS
Netjuke 1.0-rc2 - sql injection & XSS



The Netjuke is a Web-Based Audio Streaming Jukebox powered by PHP 4, a database and all the MP3, Ogg Vorbis and other format files that constitute your digital music collection. Supports images, language packs, multi-level security, random playlists, etc

http://sourceforge.net/projects/netjuke 
==================================
/explore.php?do=list.artists&ge_id=SQL
/xml.php?do=show.tracks&id=SQL

/alphabet.php?do=alpha.albums&val=XSS
/random.php/XSS
/admin/hidden.php/XSS

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.