28 lines
No EOL
656 B
Text
28 lines
No EOL
656 B
Text
##############
|
|
# Exploit Title : Invision Gallery SQL Injection
|
|
#
|
|
# Exploit Author : Ashiyane Digital Security Team
|
|
#
|
|
# software Homepage: www.invisionpower.com/apps/gallery/
|
|
#
|
|
# Home : ww.Ashiyane.org
|
|
#
|
|
# Security Risk : High - SQL Injection
|
|
#
|
|
# version : 2.0.5
|
|
#
|
|
# Dork : Invision Gallery 2.0.5 © 2013 IPS, Inc. inurl:img= or Invision Gallery 2.0.5 IPS, Inc. inurl:img=
|
|
#
|
|
##############
|
|
#location: site/index.php?automodule=gallery&cmd=si&img=[SQL]
|
|
# or site/act=module&module=gallery&cmd=si&img=[SQL]
|
|
#
|
|
##############
|
|
# [Inject with Havij or inject manually]
|
|
##############
|
|
#Greetz to: My Lord ALLAH
|
|
##############
|
|
#
|
|
#Amirh03in
|
|
#
|
|
############## |