[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Baykus Yemek Tarifleri <= 2.1 SQL Injection Vulnerability
# Published : 2010-02-28
# Author : cr4wl3r
# Previous Title : Joomla Component com_liveticker Blind SQL Injection Vulnerability
# Next Title : Majoda CMS (Auth Bypass) SQL Injection Vulnerability
# Baykus Yemek Tarifleri <= 2.1 SQL Injection Vulnerability
# By cr4wl3r
############################################################
# Code:
include("ayar.php");
$ids= $_GET["id"];
$yaz= mysql_fetch_array(mysql_query("select * from tarifler where id='$ids'"));
mysql_select_db("yemek");
mysql_query("SET NAMES ′latin5′");
mysql_query("SET CHARACTER SET latin5");
$baslik= $yaz["baslik"];
$resim = $yaz['resim'];
if($resim==""){
$resim= "bos.png";
}
$kisa= $yaz["kisa"];
$tarif= $yaz["metin"];
############################################################
# PoC: [path]/oku.php?id=[SQL]
############################################################