Vwar v1.5.0 <= Sql Injection and XSS vuln.
CVE
Category
Price
Severity
N/A
SQL Injection and XSS
Not specified
High
Author
Risk
Exploitation Type
Date
Not specified
High
Remote
2006-08-13
Our sensors found this exploit at: http://cxsecurity.com/ascii/WLB-2006080040 Below is a copy: IHST > Iran HackerZ Security Team (WhiteHat Part)
-------------------------------------------------
Vendor : www.vwar.de
vuln. Version = v1.5.0 and lower
Credits : MFox
Contact : mfoxhacker (at) gmail (dot) com [email concealed]
HomePage : www.hackerz.ir
-------------------------------------------------
Proof of Concept
Http://[Target]/[Path]/war.php?page=[SQL] & [XSS]
-------------------------------------------------
Gr33tZ :
S3rv3r_Hack3r - Hessam-X - BlOod_MoOn - Rs_VB - Rh_b_H - S433d_Only_LinuX - saTTar_li
-------------------------------------------------
Copyright ©2024 Exploitalert.
This information is provided for TESTING and LEGAL RESEARCH purposes only. All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum