GHDB « Hackers For Charity



Google Search: intitle:phpnews.login

Deeper rates this entry 6 out of 10.
Submitted: 2005-08-10 00:00:00
Added by: Deeper
Hits: 498
Score: 6

Vulnerable script auth.php (SQL injection)--- from ---Possible scenario of attack:[1] log in admin panel, using SQL injection[2] upload PHP file through "Upload Images" function (index.php?action=images) and have fun with php shellor edit template (index.php?action=modtemp) and put backdoor code into it.------------------------- version number may be found sometimes in error messages.