[39144] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Sql injection in jPortal version 2.3.1 (module banner)

daemon@ATHENA.MIT.EDU (anonymous@wp.pl)
Mon Jun 13 15:25:38 2005

Date: 12 Jun 2005 21:22:45 -0000
Message-ID: <20050612212245.32752.qmail@securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: anonymous@wp.pl
To: bugtraq@securityfocus.com

"After that, You gain login and password of administrator."

Bull shit.
In 2.3.1 version an admin password is "hashed". You gain "f95aead0f1f7481cf4d4acfe61c10fce" instaed password.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[39144] in bugtraq

Re: Sql injection in jPortal version 2.3.1 (module banner)

daemon@ATHENA.MIT.EDU (anonymous@wp.pl)Mon Jun 13 15:25:38 2005

daemon@ATHENA.MIT.EDU (anonymous@wp.pl)
Mon Jun 13 15:25:38 2005