Zylone IT – Multiple Blind SQL Injections

• Exploit Database
• 10 阅读

• 作者： Callo
  日期： 2010-07-08
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/14270/

• # Exploit Title: Zylone IT Multiple Blind SQL Injection Vulnerability
  # Date: 2010-07-08
  # Author: Callo
  # Software Link: http://www.zylone.com/
  # Version: Unknown
  # Tested on: php
  
  10101010101010101010101010101010101010101010101010101010101010101010101010101010
  01
  1 ~# Title: Zylone IT Multiple Blind SQL Injection Vulnerability 0
  01
  10101010101010101010101010101010101010101010101010101010101010101010101010101010
  01
  1 ~# Date: 2010-07-070
  01
  10101010101010101010101010101010101010101010101010101010101010101010101010101010
  01
  1 ~# Author: Callo 0
  0 ~# Home: www.gsk2.org1
  10
  01010101010101010101010101010101010101010101010101010101010101010101010101010101
  10
  0 ~# Software Link: http://www.zylone.com/ 1
  1 ~# Version: Unknow
  0 ~# Tested on: php1
  1 ~# Dork: Powered by Zylone IT0
  0Powered By: Zylone IT 1
  10
  01010101010101010101010101010101010101010101010101010101010101010101010101010101
  10
  0 ~# Exploit: http://localhost/[PATH]/news_details.php?news_id=[BLIND SQLi]1
  1 http://localhost/[PATH]/news.php?cat_id=[BLIND SQLi] 0
  0 http://localhost/[PATH]/news_details.php?sec_id=[BLIND SQLi] 1
  1 http://localhost/[PATH]/home.php?page_id=[BLIND SQLi]0
  0 http://localhost/[PATH]/events.php?cat_id=[BLIND SQLi] 1
  1 http://localhost/[PATH]/policy.php?sec_id=[BLIND SQLi] 0
  01
  01010101010101010101010101010101010101010101010101010101010101010101010101010101
  10
  0 ~# Greetz: Whivack 1
  10
  01010101010101010101010101010101010101010101010101010101010101010101010101010101