URL Shortener Script 1.0 SQL Injection

2011-10-07T00:00:00
ID PACKETSTORM:105604
Type packetstorm
Reporter M.Jock3R
Modified 2011-10-07T00:00:00

Description

                                        
                                            `===================================================================================  
url shortener script 1.0 sql injection Vulnerabilities  
===================================================================================  
  
# Exploit Title: url shortener script 1.0 sql injection Vulnerabilities  
# Author: M.Jock3R  
# Script Support Link: http://djpate.com/  
# Download Script: http://www.phpkode.com/scripts/item/url-shortener-script/  
# Category:: webapps  
# Tested on: windows XP Sp2 FR  
  
===================================================================================  
  
Vuln file : show.php  
  
Vuln Code :  
  
if($_GET['id']){  
require("mysql.php");  
$id = addslashes($_GET['id']);  
$getUrl = mysql_query("select url from urls where id = $id");   
  
Exploit:  
  
http://localhost/url-shortener-script/show.php?id=[Inj3ct]  
  
===================================================================================  
  
Greets To :  
adelsbm / attiadona / Wjunction forum  
---------------------------------  
I Love you Mindy  
---------------------------------  
Email : madrido.jocker@gmail.com  
  
THANKS TO ALL ALGERIANS HACK3RS  
===================================================================================  
  
`