snipe gallery Script SQL Injection

ID EDB-ID:14053
Type exploitdb
Reporter dev!l ghost
Modified 2010-06-25T00:00:00


snipe gallery Script Sql Injection. Webapps exploit for php platform

                                            # Exploit Title:   snipe gallery Script Sql Injection
# Date: 26/06/2010
# Author: dev!l ghost
# Email: aws(at)live(dot)it
# Site :
# Script url:
# Version: 3.1.5
# Tested on: Windows
# CVE : ()
DorK:(Snipe Gallery v.3.1.5 by Snipe.Net)

When You search with the dork you will find a lot of sites ,,enter
site and you will find a lot of pictures enter any picture and 
the pot the(')and start the inject

the inject is very easy 



Greatz to all my frinds and the all muslims 
and Volc4n0 and Golden Ice and mr.ip
and the all