Lyrics 3.0 - Engine SQL Injection

EDB-ID:

14244

CVE:

2010-2721

EDB Verified:

Author:

Sid3^effects

Type:

webapps

Exploit: /

Platform:

PHP

Date:

2010-07-06

Vulnerable App:

1               ##########################################             1
0               I'm Sid3^effects member from Inj3ct0r Team             1
1               ##########################################             0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

Name :  Lyrics V3 engine Sqli Vulnerability
Date : july 6,2010
Critical Level 	: HIGH
vendor URL :http://rightinpoint.com/
Price:$99
Author : Sid3^effects aKa HaRi <shell_c99[at]yahoo.com>
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger_
greetz to :www.topsecure.net ,All ICW members and my friends :) luv y0 guyz 
#######################################################################################################
Description : 
Key Features

    * SEO friendly engine - all urls looks like static html files
    * Huge database - 128521 lyrics, 8561 albums, 2076 artists, 6429 albums covers
    * New [add-on] Ability to upgrade database to the more that 380k lyrics, 20k artists, 30k albums.
    * New [add-on] Custom skins - we may create custom skin for you or you may buy one of the our predefined skins
#######################################################################################################
Xploit :SQli Vulnerability

DEMO URL :http://server/index.php?new_a=addalbum&artist_id=[sqli]

###############################################################################################################
# 0day no more 
# Sid3^effects

Tags:

Advisory/Source: Link

Databases	Links	Sites	Solutions
Exploits	Search Exploit-DB	OffSec	Courses and Certifications
Google Hacking	Submit Entry	Kali Linux	Learn Subscriptions
Papers	SearchSploit Manual	VulnHub	OffSec Cyber Range
Shellcodes	Exploit Statistics		Proving Grounds
			Penetration Testing Services