Bugtraq mailing list archives

Re: Sql injection in jPortal version 2.3.1 (module banner)

From: exon <exon () home se>
Date: Mon, 13 Jun 2005 23:08:44 +0200

anonymous () wp pl wrote:

"After that, You gain login and password of administrator."

Bull shit.
In 2.3.1 version an admin password is "hashed". You gain "f95aead0f1f7481cf4d4acfe61c10fce" instaed password.


It's still a Bad Thing(tm). See http://www.openwall.com/john for details.

Current thread:

Re: Sql injection in jPortal version 2.3.1 (module banner) anonymous (Jun 13)
- Re: Sql injection in jPortal version 2.3.1 (module banner) exon (Jun 15)