Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!

TUCoPS :: Web :: Blogs :: va2745.htm

EZ-Blog Beta 1 Multiple SQL Injection

Better a bottle in front of me than a frontal lobotomy.

EZ-Blog Beta 1 Multiple SQL Injection
EZ-Blog Beta 1 Multiple SQL Injection

*******   Salvatore "drosophila" Fresta   *******

Application:      EZ-Blog 
Version:            Beta 1
Bug:                 * Multiple SQL Injection
Exploitation:     Remote
Date:                1 Mar 2009
Discovered by: Salvatore "drosophila" Fresta
Author:             Salvatore "drosophila" Fresta



SQL Injection:

	Requisites: magic_quotes_gpc = off

	This is a crazy application because it not
	require authentication for posting, deleting,
	etc. and it is entirely vulnerable to SQL
	Injection, as follows:
http://site/path/public/view.php?storyid=-1' UNION ALL SELECT 
	There aren't hight reserved information on the
	database, but it is possible to cause inconvenience.
	The following injection allow to delete all
action="http://site/path/admin/remove.php" method="POST">
************************************************* -- Salvatore "drosophila" Fresta CWNP444351

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2015 AOH