Oto Galery v1.0 Multiple SQL Injection Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Oto Galery v1.0 Multiple SQL Injection Vulnerabilities
# Published : 2010-12-19
# Author : DeadLy DeMon
# Previous Title : html-edit CMS Multiple Vulnerabilities
# Next Title : Virtual Store Open 3.0 Acess SQL Injection

+Name : Oto Galery v1.0  <<= Multiple SQL injection Vulnerabilities
+Autor : DeadLy DeMon
+Date : 18.12.2010
+Script : Oto Galery v1.0
+Vendor : http://www.iskenderaltuntas.com
+Price : 1000 TL
+Language : PHP
+Tests : Windows XP SP 3 and Backtrack4 any other OS
+Discovered by DeadLy DeMon
+ Cyber - Warrior TIM =>> *www.cyber-warrior.org*
+Greetz to All System-Hacker, BlackApple , F0RTYS3V3N , HUNT3R , ?air-ul
Cihad and All KinqSqlZCrew
Members
---------------------------------------------------------------------------------------

Var m? i?inizde beni tan?yan?
Ya?anmadan ??zülemeyen s?r benim.
Kalmasada ??hretimi duymayan,
Kimli?imi tarif etmek zor benim..
                                    Akl?n?za Geliriz Akl?n?z Gider...
KinqSqlZ Crew Akar...
----------------------------------------------------------------------------------------

Bug ;
carsdetail.asp?arac=[Sql Inj.]
twohandscars.asp?marka=[Sql Inj.]

---------------------------------------------------------------------------------------