Changomedia SQL Injection

2012-06-12T00:00:00
ID PACKETSTORM:113513
Type packetstorm
Reporter Taurus Omar
Modified 2012-06-12T00:00:00

Description

                                        
                                            `  
==> ABOUT ME:  
--- TAURUS OMAR  
--- INDEPENDENT SECURITY RESEARCHER  
--- ACCESOILEGAL.BLOGSPOT.COM  
--- @omartaurus  
--- omar-taurus[at]dragonsecurity[dot]org   
--- omar-taurus[at]live[dot]com  
  
===> INFO:  
Author : TAURUS OMAR  
Category : Webapps / 0day   
Title Exploit : Changomedia - SQL Injection Vulnerability   
Vendor : Changomedia  
URL Vendor : http://changomedia.com.ar/  
Google Dork : intext:"Pwrd:Changomedia" Or intext: Changomedia diseño & hosting   
  
  
==> SAMPLE'S SQLi:  
http://www.quadcrossx.com/paginas.php?ID=148 [SQL Injection]  
http://ynfinity.com.ar/paginas.php?ID=25 [SQL Injection]  
http://www.hoteldelaciudad.com/paginas.php?ID=6 [SQL Injection]  
http://www.juruju-jaja.com.ar/paginas.php?ID=7 [SQL Injection]  
http://www.envasadoraservpack.com.ar/paginas.php?ID=24 [SQL Injection]  
  
MORE IN GOOGLE..  
  
`