NTG Haber Yazilim 1 SQL Injection

2012-03-15T00:00:00
ID PACKETSTORM:110813
Type packetstorm
Reporter 3spi0n
Modified 2012-03-15T00:00:00

Description

                                        
                                            `# Exploit Title; NTG Haber Yazilim v1 - SQL Injection Vulnerability  
# Date ; 14/03/12  
# Author ; 3spi0n  
# Script Vendor ; www.netgenel.net/index/1/ntg-haber-yazilimi-v1.html  
# Script Demo ; http://www.netgenel.net/v1/anasayfa.php  
# Category ; Webapps  
# Type ; Sql Injection  
# Tested on ; Ubuntu / Win7  
  
[#] Script Details ;  
  
- Vulnerable File is ; "rss.php"  
  
- Demo ; http://www.netgenel.net/v1/rss.php?kat=1  
  
- Google Dorks ; "Copyright © 2011 - 2012 NETGENEL BÝLÝÞÝM"  
  
[#] Greetz ;  
  
- Grayhatz Corporation, www.Grayhatz.Co  
- My Official Blog, www.Ryuzaki.in  
- Facebook.Com/3spi0ne - Twitter.Com/RigidusCO  
`