Plogger Photo Gallery suffers from a remote SQL injection vulnerability.
9e0cd3d5d4a2c0b373c70f0581a33cfcdc5478916e8f3ad6558bf64ac1aafe83
# Plogger Photo Gallery All Versions Sql Vulnerability Exploit
# </ No Priv8 , Everything is Public >
# Date: 2/1/2012 - 9:00
# Author: Cyber White Hats
# Finded By : Nafsh
# We Are : Mr.M4st3r , Nafsh , Skote_Vahshat , HijaX
# Support: CyberWH.org/Forum
# Mail: cwh.team@gmail.com
# Software Website: http://plogger.org/
# Security Risk: High
# Platform: Php
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
[$] Dorks: inurl:level "Powered by Plogger!" "warning:" "mysql"
[#] Vulnerable File : "?level=patch&id=[sql]"
[$] Demo Sites:
http://calahe.org/photos/index.php?level=album&id=2
http://lesliebands.com/gallery.php?level=album&id=25
http://risc-wp.be/ploggerb2.1/index.php?level=collection&id=1
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
</ No Priv8 , Everything is Public >
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
#Cyberwh.org