HLstatsX SQL Injection

2010-01-01T00:00:00
ID PACKETSTORM:84636
Type packetstorm
Reporter bnc
Modified 2010-01-01T00:00:00

Description

                                        
                                            `#==iNFO==========================================#  
# Software: HlstatsX Sql Injection  
# Vulnerability: Remote Sql Injection  
# Google Dork: "hlstats.php?mode=dailyawardinfo&award=" hlstatsx  
# Off. site: www.hlstatsx.com  
#================================================#  
  
#===Author=======================================#  
# Author: bnc  
# Date: 2009.12.30.  
# Contact: irc.freenode.net<http://irc.freenode.net> #rootsite.hu<http://rootsite.hu> [BNC]  
#================================================#  
  
  
#==SQL_Injection================================#  
# Exploit: hxtp://site/hlstats.php?mode=dailyawardinfo&game=l4d&award=@  
  
# Login page: hxtp://site/hlstats.php?mode=admin  
#================================================#  
  
  
#===Greetz=======================================#  
# rootsite.hu<http://rootsite.hu> staff & members, for happy moments  
# My mom for cookies, and intresting blablas  
# My girlfriend, for anything, I just love babe <3  
#================================================#  
`