phux Download Manager Blind SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : phux Download Manager Blind SQL Injection Vulnerability
# Published : 2012-01-30
# Author :
# Previous Title : SAPID 1.2.3 Stable Remote File Inclusion Vulnerability
# Next Title : VR GPub 4.0 CSRF Vulnerability

# 
# Title     : phux Download Manager Blind SQL Injection Vulnerability
# Author    : Red Security TEAM
# Date      : 30/01/2012
# Risk      : High
# Demo      : http://demos.phux.org/download_manager/
# Tested On : CentOS
# Contact   : Info [ 4t ] RedSecurity [ d0t ] COM
# Home      : http://RedSecurity.COM
#
# Exploit   :
# http://server/download.php?file=[BlindSQLi]
#