Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: Apps :: b06-1363.htm

SQL Injection in Softbiz Image Gallery



SQL Injection in Softbiz Image Gallery
SQL Injection in Softbiz Image Gallery



Hello
Vulnerable: Softbiz Image Gallery
http://www.softbizscripts.com 

Exploit :
http://example.com/imagegallery/image_desc.php?id=[SQL] 

http://example.com/imagegallery/template.php?provided=[SQL] 

http://example.com/imagegallery/suggest_image.php?cid=[SQL] 

http://example.com/imagegallery/insert_rating.php?img_id=[sql] 

http://example.com/imagegallery/images.php?cid=[SQL] 

Discovery by Linux_Drox

http://LeZr.Com 

Best Regards ,,


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH