Mlffat 2.3 SQL Injection Vulnerability

2011-05-31T00:00:00
ID 1337DAY-ID-16226
Type zdt
Reporter KinG Of PiraTeS
Modified 2011-05-31T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ####
# Exploit Title: Mlffat 2.3 SQL Injection Vulnerability 
# Author: KinG Of PiraTeS
# Facebook Page: www.facebook.com/cr4ck3d
# E-mail: [email protected] 
# Category:: webapps
# Google Dork: "Powered by Mlffat 2.3"
# Vendor: http://mlffat.com/emm/index.php?action=order
# Version: 2.3
# Tested on: [Windows 7 Edition Intégrale]
####

# Example Vuln : 
+ Upload File then View Info 

+ Or choose file from Index

http://127.0.0.1/[Path]/index.php?action=viewfile&id=[ Inject here ]

# Demo site

http://www.mo3alem.com/upld/index.php?action=viewfile&id=2473
http://www.inb3ath.com/up/index.php?action=viewfile&id=922


####

Peace From Algeria

####

=================================**Algerians Hackers**=======================================
# Greets To : 
  Caddy-Dz & **All Algerians Hackers** , Kondamne , The-007 ,  Bensekran , Joker dz
  (exploit-id.com) , (1337day.com) , (h4ckforu.com) , (alboraaq.com)
  All My Friends: Ali Abdennadher ,Chaouki Keffois , Kader11000 , Br0x-dz , Hanixpo ,..others
=============================================================================================



#  0day.today [2018-01-04]  #