AOH :: HP Unsorted V :: B06-4017.HTM

Vwar v1.5.0 <= Sql Injection and XSS vuln.



Vwar v1.5.0 <= Sql Injection and XSS vuln.
Vwar v1.5.0 <= Sql Injection and XSS vuln.



IHST > Iran HackerZ Security Team (WhiteHat Part)
-------------------------------------------------
Vendor : www.vwar.de
vuln. Version = v1.5.0 and lower
Credits : MFox
Contact : mfoxhacker@gmail.com
HomePage : www.hackerz.ir
-------------------------------------------------
Proof of Concept
Http://[Target]/[Path]/war.php?page=[SQL] & [XSS]
-------------------------------------------------
Gr33tZ :

S3rv3r_Hack3r - Hessam-X - BlOod_MoOn - Rs_VB - Rh_b_H - S433d_Only_LinuX - saTTar_li
-------------------------------------------------

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.