24 lines
445 B
Text
Executable file
24 lines
445 B
Text
Executable file
K-Rate SQL Injection Vulnerability
|
|
|
|
|
|
By: e.wiZz!
|
|
|
|
|
|
#### Script site:http://turn-k.net/k-rate
|
|
|
|
|
|
In the wild...
|
|
|
|
#####################################
|
|
|
|
|
|
####Vulnerability:
|
|
|
|
SQL Injection in view.php,variable username.
|
|
Anyway, all sites i saw which are powered by this script are hosted on Apache,and have
|
|
a mod_rewrite enabled,so you need to try this:
|
|
|
|
http://inthewild/view/admi'n.html
|
|
|
|
You need to add .html at the end.
|
|
|