Re: modules name(Downloads)SQL Injection Exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: modules name(Downloads)SQL Injection Exploit
From: znx <znxster@xxxxxxxxx>
Date: Wed, 10 May 2006 23:04:20 +0100
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Qj3QEJDC4chaB9sdR7bzB//WqqoEkNk8dN8X0GHf/fozKnq/D8oMfeAQIsG/0Nf0bTuyRwgHIKlZC3/R/sicnKn5R6fQd3/VuVrMKDGmQWypXRFvV9rr58Qo6OU/9guEsBMBQeEqYtU8qWEefIDkpYRLLC47WB+bPwob6LlnbMQ=
In-reply-to: <Pine.LNX.4.44.0605072242180.557-100000@xxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20060505014452.20103.qmail@xxxxxxxxxxxxxxxxx> <Pine.LNX.4.44.0605072242180.557-100000@xxxxxxxxxxxxxxxxxxxxxxxx>

On 08/05/06, Paul Laudanski <zx@xxxxxxxxxxxxxx> wrote:

What application are you talking about?


I believe you will find that it is PHPNuke.. however what version etc...

References:
- modules name(Downloads)SQL Injection Exploit
  - From: Mster-X
- Re: modules name(Downloads)SQL Injection Exploit
  - From: Paul Laudanski