Scripts Feed Business Directory – SQL Injection

Exploit Database
12 阅读

作者： Crux

日期： 2010-02-27
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/11592/

==============================================================================
[~] Scripts Feed Business Directory SQL Injection Vulnerability
==============================================================================
[+] My home[ http://hack-tech.com ]
[+] Date Submitted:[ February 27 2010 ]
[+] Founder: [ Crux ]
[+] Vendor:[ Scriptsfeed ]
[+] Version: [ ALL ]
[+] Download:[ http://www.scriptsfeed.com/business-directory.html ]


[ EXPLOIT ]
- This vulnerability affects login.php
-The POST variables 'us' and 'ps' are vulnerable.

[ ATTACK DETAILS ]
us=user&ps=${SQLINJECTIONHERE}&s1=LOGIN

==============================================================================

last Exploits
Scripts Feed Business Directory – SQL Injection的更多信息

Joomla! Component com_x-shop – ‘idd’ SQL Injection：
Stock Management System 1.0 – ‘Categories Name’ Persistent Cross-Site Scripting：
Freelance Website Script 2.0.6 – ‘pr_id’ / ‘catid’ SQL Injection：
openSIS 9.1 – SQLi (Authenticated)：
Escort Marketplace 1.0 – SQL Injection：
Apple iOS 7.0.2 – Sim Lock Screen Display Bypass：
Joomla! Component allCineVid 1.0.0 – Blind SQL Injection：
vBulletin Two-Step External Link Module – ‘externalredirect.php’ Cross-Site Scripting：