Vwar v1.5.0 <= Sql Injection and XSS vuln.

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1053163 漏洞类型
发布时间 2006-08-08 更新时间 2006-08-08
CVE编号 CVE-2006-4010
CVE-2006-4009
CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2006080040
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
IHST > Iran HackerZ Security Team (WhiteHat Part)

-------------------------------------------------

Vendor : www.vwar.de

vuln. Version = v1.5.0 and lower

Credits : MFox

Contact : mfoxhacker (at) gmail (dot) com [email concealed]

HomePage : www.hackerz.ir

-------------------------------------------------

Proof of Concept

Http://[Target]/[Path]/war.php?page=[SQL] & [XSS]

-------------------------------------------------

Gr33tZ :

S3rv3r_Hack3r - Hessam-X - BlOod_MoOn - Rs_VB - Rh_b_H - S433d_Only_LinuX - saTTar_li

-------------------------------------------------