studioumbrella SQL Injection Vulnerability

2013.03.27

Credit: Am!r

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

Dork: intext:\"created by umbrella\"

#################################
#
# Exploit Title : studioumbrella Sql Injection Vulnerability
#
# Author        : IrIsT.Ir
#
# Discovered By : Am!r
#
# Home          : http://IrIsT.Ir/en  <== English Forum
#
# Software Link : http://www.stuXXXoumbrella.co.il
#
# Security Risk : High
#
# Version       : All Version
#
# Tested on     : GNU/Linux Ubuntu - Windows Server - win7
#
# Dork          : intext:"created by umbrella"
#
#################################
#
#  Expl0iTs :
#
#  http://target.com/services.php?id=[Sql]
#
#
# D3mo :
#
#  http://www.expXXXmedia.net/services.php?id=our_pr_approach[Sql]
#
#################################
#
# Greats : B3HZ4D - C0dex - Dead.Zone - TaK.FaNaR - Beni_Vanda - 0x0ptim0us
#
# m3hdi - F@rid - skote_vahshat - Noter - Dj.TiniVini - Nothing - z3r0
#
# sajjad13and11 - Mr Zer0 - silent - dr.koderz - IR Anonymous - joker_s 
#
#                      &    All Members In IrIsT.Ir
#
#################################
#
#Tnx To : PacketstormSecurity.Org - Cxsecurity.Com - 1337day.com - exploit-db.com
#
#################################

References:

http://IrIsT.Ir/en

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

studioumbrella SQL Injection Vulnerability

Dork: intext:\"created by umbrella\"

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.