2005-12-14 13:10:48 by: h4x0r
Arab Portal Link.PHP SQL Injection Vulnerabilities
Vulnerable: Arab Portal System Arab Portal System 2.0 beta 2
describ:
Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
Exploit:
An example URI:
http://www.example.com/Arab_Portal_v.2.0_beta_ ... list&cat_id=5&',
'010','Hacker','0')/*
Comments Feed: http://www.4evil.org/feed.asp?q=comment&id=366
describ:
Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
Exploit:
An example URI:
http://www.example.com/Arab_Portal_v.2.0_beta_ ... list&cat_id=5&',
'010','Hacker','0')/*
Comments Feed: http://www.4evil.org/feed.asp?q=comment&id=366
There is no comment on this article.
