deV!Lz Clanportal [DZCP] <= 1.4.9.6 - Blind SQL Injection Exploit

No description provided by source. use HTTP::Cookies; use LWP::UserAgent; my $ua = LWP::UserAgent-new cookiejar = HTTP::Cookies-new,; $ua-agent 'Mozilla/5.0 Gecko/20061206 Firefox/1.5.0.9' ; usage; print \n; $server = $ARGV0; $dir = $ARGV1; $username = $ARGV2; $password = $ARGV3; if !$password di...

miniweb20-sql.txt

Miniweb 2.0 Admin bypass Type: 'union select 1 in the username field and press login, you are admin! download: http://www.miniweb2.com/ Found by bizzit and cybernetic Contact: bizzitatlive.de Greetz to: Suicide, ReED, h0yt3r, J0hn^x3r, tmh, n00bor, Five-Three-Nine, electron1x, Nazrek, Free-Hack a...

AcmlmBoard 1.A2 (pow) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================== AcmlmBoard 1.A2 pow Remote SQL Injection Vulnerability ======================================================== AcmlmBoard v1.A2 SQL Injection Vulnerability Bug by: h0yt3r Dork:...

CaupoShop Classic 1.3 (saArticle[ID]) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================================== CaupoShop Classic 1.3 saArticleID Remote SQL Injection Vulnerability ======================================================================== !/usr/bin/perl CaupoShop...

CaupoShop Classic 1.3 - &#039;saArticle[ID]&#039; SQL Injection

!/usr/bin/perl CaupoShop Classic 1.3 Remote Exploit Bug by: h0yt3r Dork: inurl:cscarticledetails.php Couldnt find a stable dork for this specific Version. Exploit will only work on correct version. I found this long time ago but never actually shared it. As the userid's are a bit messy you will...

cauposhop-sql.txt

!/usr/bin/perl CaupoShop Classic 1.3 Remote Exploit Bug by: h0yt3r Dork: inurl:cscarticledetails.php Couldnt find a stable dork for this specific Version. Exploit will only work on correct version. I found this long time ago but never actually shared it. As the userid's are a bit messy you will...

CaupoShop Classic 1.3 - saArticle[ID] SQL Injection

CaupoShop Classic 1.3 - saArticleID SQL Injection !/usr/bin/perl CaupoShop Classic 1.3 Remote Exploit Bug by: h0yt3r Dork: inurl:cscarticledetails.php Couldnt find a stable dork for this specific Version. Exploit will only work on correct version. I found this long time ago but never actually...

easytrade-sql.txt

easyTrade v2.x SQL Injection Vulnerability Bug by: h0yt3r Dork: "powered by easytrade" Script suffers from a not correctly verified detail id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys. We dont get an...

easyTrade 2.x - id SQL Injection

easyTrade 2.x - id SQL Injection easyTrade v2.x SQL Injection Vulnerability Bug by: h0yt3r Dork: "powered by easytrade" Script suffers from a not correctly verified detail id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting...

mymarket-blindsql.txt

!/usr/bin/perl MyMarket 1.72 Blind SQL Injection Exploit Bug by: h0yt3r Demo: http://mymarket.sourceforge.net/demo/shopping/ http://www.site.de/mymarket/shopping/?id=bluah Ok when we give $id an unexpected value like this we get an SQL Error. Union selecting seems not possible... Exploit needs a...

MyMarket 1.72 - Blind SQL Injection

!/usr/bin/perl MyMarket 1.72 Blind SQL Injection Exploit Bug by: h0yt3r Demo: http://mymarket.sourceforge.net/demo/shopping/ http://www.site.de/mymarket/shopping/?id=bluah Ok when we give $id an unexpected value like this we get an SQL Error. Union selecting seems not possible... Exploit needs a...

MyMarket 1.72 Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================= MyMarket 1.72 Blind SQL Injection Exploit ========================================= !/usr/bin/perl MyMarket 1.72 Blind SQL Injection Exploit Bug by: h0yt3r Demo:...

PHPMyCart 1.3 - &#039;cat&#039; SQL Injection

PHPMyCart Injection Vulnerability Bug by: h0yt3r Script suffers from a not correctly verified category id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys. We dont get any SQL Errors when the Injection Quer...

Cartweaver 3 (prodId) Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ======================================================== Cartweaver 3 prodId Remote Blind SQL Injection Exploit ======================================================== !/usr/bin/perl Cartweaver 3 PHP Blind SQL Injection Substring...

Clever Copy 3.0 (results.php) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Clever Copy results.php Remote SQL Injection Exploit Bug by: h0yt3r Dork: "powered by Clever Copy" This simple Exploit will give you Admin Username and md5Password Pls don't use this to crack sites :P Gr33tz go to: thund3r, ramon, b!zZ!t, Free-Hac...

clevercopy3-sql.txt

!/usr/bin/perl Clever Copy results.php Remote SQL Injection Exploit Bug by: h0yt3r Dork: "powered by Clever Copy" This simple Exploit will give you Admin Username and md5Password Pls don't use this to crack sites :P Gr33tz go to: thund3r, ramon, b!zZ!t, Free-Hack, Sys-Flaw and of course the...

jammcms-sql.txt

!/usr/bin/perl JAMM CMS id Blind SQL Injection Vulnerability Bug by: h0yt3r Dork: "powered by JAMM" http://www.site.de/cms/?id=blah Ok when we give $id an unexpected value like this we get an SQL Error. Unfortunately the script is so rude that it doesn't want to show us any data when we UNION...

Clever Copy 3.0 - &#039;results.php&#039; SQL Injection

!/usr/bin/perl Clever Copy results.php Remote SQL Injection Exploit Bug by: h0yt3r Dork: "powered by Clever Copy" This simple Exploit will give you Admin Username and md5Password Pls don't use this to crack sites :P Gr33tz go to: thund3r, ramon, b!zZ!t, Free-Hack, Sys-Flaw and of course the...

Clever Copy 3.0 (results.php) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================== Clever Copy 3.0 results.php Remote SQL Injection Exploit ========================================================== !/usr/bin/perl Clever Copy results.php Remote SQL Injection...

Clever Copy 3.0 - results.php SQL Injection

Clever Copy 3.0 - results.php SQL Injection !/usr/bin/perl Clever Copy results.php Remote SQL Injection Exploit Bug by: h0yt3r Dork: "powered by Clever Copy" This simple Exploit will give you Admin Username and md5Password Pls don't use this to crack sites :P Gr33tz go to: thund3r, ramon, b!zZ!t,...