In the page where you can add blog comments, the insert statement is subject to a sqli.
INSERT INTO blogs_table(blogger_name, comment, date) VALUES ('admin', 'comment', now())
A comment can therefore be made to appear it was created at an arbitrary time:
gone back in time', now()-60*60*24);#
INSERT INTO blogs_table(blogger_name, comment, date) VALUES ('admin', 'comment', now())
A comment can therefore be made to appear it was created at an arbitrary time:
gone back in time', now()-60*60*24);#
This page is also vulnerable to stored XSS, because we can put anything we like (javascript) into a comment.
No comments:
Post a Comment