Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Oxygen<=1.x.x SQL injection

From: dabdoub-mosikar () moroccan-security com
Date: 30 Mar 2006 22:12:06 -0000
author: DaBDouB-MoSiKaR [Moroccan Security Team]
site: www.o2php.com
greetz to : [Moroccan Security Team] CiM-TeaM and All Freinds
Solution: intval()
exemple:
http://[target]/post.php?action=newthread&fid=[sql]
inbox:DaBDouB-MoSiKaR[at]moroccan-security[dot]com
Previous By Date Next
Previous By Thread Next

Current thread: