EQdkp <= 1.3.2 (listmembers.php rank) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w EQdkp = 1.3.2 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code listmembers.php: $sql = 'SELECT m., m.memberearned-m.memberspent+m.memberadjustment AS...

1024cms-lfisql.txt

Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin Hash Retrieve Exploit Need: magicquotesgpc = Off Bug1: Vu...

1024 CMS 1.4.2 - Local File Inclusion Blind SQL Injection

1024 CMS 1.4.2 - Local File Inclusion Blind SQL Injection Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin...

zenphoto-sql.txt

!/usr/bin/perl -w Zenphoto 1.1.3 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code rss.php: $albumnr = $GETalbumnr; if $albumnr != "" $sql = "SELECT FROM ". prefix"images" ." WHERE albumid = $albumnr AND show = 1...

vBulletin Mod RPG Inferno 2.4 - &#039;inferno.php&#039; SQL Injection

--==+================================================================================+==-- --==+ RPG Inferno v2.4 SQL Injection Vulnerability +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZz & xprog SITE:...

Fuzzylime Forum 1.0 - &#039;low.php?topic&#039; SQL Injection

!/usr/bin/perl -w Fuzzylime Forum 1.0 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code low.php: $gettopicid = mysqlquery"SELECT FROM $tableprefixthreads WHERE threadid='$GETtopic'"; PoC:...

Fuzzylime Forum 1.0 - low.php?topic SQL Injection

Fuzzylime Forum 1.0 - low.php?topic SQL Injection !/usr/bin/perl -w Fuzzylime Forum 1.0 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code low.php: $gettopicid = mysqlquery"SELECT FROM $tableprefixthreads WHERE...

comicsense02-sql.txt

!/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035 Vulnerable Code index.php: $sqlQuery = "SELECT...

Comicsense 0.2 - &#039;index.php?epi&#039; SQL Injection (2)

!/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035 Vulnerable Code index.php: $sqlQuery = "SELECT...

Zomplog 3.8 - &#039;mp3playlist.php&#039; SQL Injection

!/usr/bin/python ---------------------------------------------------------------------------------- The sql injection : /zomplog-3.8/plugins/mp3playlist/mp3playlist.php?speler=sql I've code a sploit for the fun x ----------------------------------------------------------------------------------...

FAQEngine 4.16.03 - question.php?questionref SQL Injection

FAQEngine 4.16.03 - question.php?questionref SQL Injection !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where...

SimpleNews <= 1.0.0 FINAL (print.php news_id) SQL Injection Exploit

Exploit for unknown platform in category web applications =================================================================== SimpleNews = 1.0.0 FINAL print.php newsid SQL Injection Exploit =================================================================== !/usr/bin/perl -w SimpleNews = 1.0.0...