GHDB
GHDB
|
Google Search: “portailphp v1.3″ inurl:”index.php?affiche” inurl:”PortailPHP” -site:safari-msi.com
webby_guy rates this entry 6 out of 10. Submitted: 2005-06-03 06:56:30 Added by: webby_guy Hits: 4455 Score: 6 Vulnerability has been found in parameter “id”. If this variableAny value it is possible to replace it with a sign ‘ is transferredSince this parameter is involved in all modules, all of themAre vulnerable.It occurs because of absence of a filtration of parameter id.Exampleshttp://example/index.php?affiche=News&id=’[SQL inj]http://example/index.php?affiche=File&id=’[SQL inj]http://example/index.php?affiche=Liens&id=’[SQL inj]http://example/index.php?affiche=Faq&id=’[SQL inj]The conclusionVulnerability is found out in version 1.3, on other versionsDid not check. Probably they too are vulnerable. Comments: 2005-06-07 15:08:06 (Twizik): http://www.securityfocus.com/bid/6273 Just a little bit more info… |
Does GHDB still updates for now?
The GHDB is alive and well, updated through the ExploitDB: http://www.exploit-db.com/google-dorks.
Hi Johnny,been a while since I’ve came last. Aren’t you gonna update this website anymore???
The GHDB is not updated and lives with the exploitdb: http://http://www.exploit-db.com. Please check out the awesome folks at Offensive Security as well: http://www.offensive-security.com!
Is any offline view-able resources is available of this product ?