Linesis SQL Injection

2013-08-03T00:00:00
ID PACKETSTORM:122676
Type packetstorm
Reporter miyachung
Modified 2013-08-03T00:00:00

Description

                                        
                                            `##################################################################################  
__ _ _ ____   
/ /___ _____ (_)_____________ ______(_)__ _____ / __ \_________ _  
__ / / __ `/ __ \/ / ___/ ___/ __ `/ ___/ / _ \/ ___// / / / ___/ __ `/  
/ /_/ / /_/ / / / / (__ |__ ) /_/ / / / / __(__ )/ /_/ / / / /_/ /   
\____/\__,_/_/ /_/_/____/____/\__,_/_/ /_/\___/____(_)____/_/ \__, /   
/____/   
##################################################################################   
Linesis (index.php,Kid) SQL Injection Vulnerability  
Author(Pentester): Miyachung  
Special Thanks : All Janissaries Team(B127Y,eno7,TheMirkin,PaRaNTeZ,M-A,n4sss)  
Dork : "Powered by Linesis"   
##################################################################################  
  
  
  
1.)SQL Injection Vulnerability (index.php)  
  
Vuln Path : index.php?Kid=51+[SQL]  
Example : http://www.victim.com/index.php?Kid=51+[SQL]  
Live Demos  
-------------------------------------------------  
http://www.mindayapi.com.tr/index.php?Kid=183'  
http://www.gess.com.tr/index.php?Kid=426'  
http://findikkaya.com.tr/index.php?Kid=135'  
  
`