2DayBiz Real Estate Portal "viewpropertydetails.php" SQL injection

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : 2DayBiz Real Estate Portal "viewpropertydetails.php" SQL injection
# Published : 2010-06-24
# Author : Sangteamtham
# Previous Title : 2DayBiz - The Web Template Software SQL injection and XSS vulnerability
# Next Title : 2DayBiz Video Community portal"user-profile.php" SQL Injection Vulnerability

$-------------------------------------------------------------------------------------------------------------------
$ 2daybiz Real Estate Portal "viewpropertydetails.php" SQL injection
$ Author : Sangteamtham
$ Home : Hcegroup.net
$ Download :http://www.2daybiz.com/realestate_portalscript.html
$ Date :06/24/2010
$
$******************************************************************************************
$Exploit:
$
$ http://server/viewpropertydetails.php?id=[id number][SQL]
$
$ Greetz to: All Vietnamese hackers and Hackers out there researching for
more security
$
$
$--------------------------------------------------------------------------------------------------------------------