Boc Web suffers from a remote SQL injection vulnerability.
b0bb5d7f5812022cccb1f0f429e6c2c3b5893df96cfcb0906c176b27ba8b39f2
.___ .___ .__ _________ .___
| | ____ __| _/ ____ ____ ____ ______|__|_____ ____ \_ ___ \ ____ __| _/ ____ _______
| | / \ / __ | / _ \ / \ _/ __ \ / ___/| |\__ \ / \ / \ \/ / _ \ / __ | _/ __ \ \_ __ \
| || | \/ /_/ | ( <_> )| | \\ ___/ \___ \ | | / __ \_| | \\ \____( <_> )/ /_/ | \ ___/ | | \/
|___||___| /\____ | \____/ |___| / \___ >/____ >|__|(____ /|___| / \______ / \____/ \____ | \___ > |__|
\/ \/ \/ \/ \/ \/ \/ \/ \/ \/
[~]===========================================================================[~]
[~]Title : Boc Web SQL Injection
[~]Vendor : http://www.bocweb.cn/
[~]Author : tempe_mendoan
[~]Contact : http://indonesiancoder.com/
[~]Google Dork : "Powered by BOC"
[~]Google Dork : Jakarta , Indonesia ( Februari 2012 )
[~]===========================================================================[~]
#################################################################################
===[ Exploit ]===
[? http://localhost/products.php?id=[SQL]
[? http://localhost/newsinfo.php?id=[SQL]
##################################################################################
Greats T0 :
./ And All My Friend
Note :
./ I Love You Dila :*