Kubelance version 1.7.6 suffers from a remote SQL injection vulnerability.
0af7f35e5cef4f073327c98943787d8393a15eea1f2fe2ddeaf8657955b918f01-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-0
0 _ __ __ __ 1
1 /' \ __ /'__`\ /\ \__ /'__`\ 0
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1
1 \ \____/ >> Exploit database separated by exploit 0
0 \/___/ type (local, remote, DoS, etc.) 1
1 1
0 [+] Site : Inj3ct0r.com 0
1 [+] Support e-mail : submit[at]inj3ct0r.com 1
0 0
1 ########################################## 1
0 I'm L0rd CrusAd3r member from Inj3ct0r Team 1
1 ########################################## 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1
Author: L0rd CrusAd3r aka VSN [crusader_hmg@yahoo.com]
Exploit Title:kubelance SQL Injection
Vendor url:http://www.kubelabs.com
Version:1.7.6
Price:90$
Published: 2010-06-19
Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue, S1ayer,d3c0d3r,KD and to all ICW members.
Spl Greetz to:inj3ct0r.com Team, Andhra hackers.com
~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~
Description:
Full Source Code
When you purchase Kubelance you receive the full open source code allowing you to edit the software in any way you require.
Installation
Kubelance uses a simple wizard installations making it very easy to install but if you want our support team will install it for you free of charge.
Escrow
Kubelance features an integrated Escrow system that allow users to create and bid on projects with peace of mind that they will receive the correct amount for their endeavors.
Templates
Kubelance comes with 10 templates for you to choose from, each template comes packaged with the photoshop file so you can edit the logo, buttons, etc. Kubelance uses easy to edit html template files so creating your own unique template couldn't be easier.
Languages
Kubelance currently supports English, German, French, Spanish, Italian and Norwegian. The default Language can be quickly and easily changed from the admin area.
If your required language is not currently supported it is very simple for you to translate it by creating a new language file. Individual users of the site can also select their required language from the manage account page.
Upgrades
The kubelabs support team is constantly working on bringing new features to Kubelance, clients are entitled to one year of free updates.
Admin
Kubelance uses a powerful Admin panel for controlling your site.
Payment
Plugin payment system (allows for additional payment methods to be installed easily)
Charge a fee for each project and job
Supports Paypal, NoChex, Money Bookers and egold.
Additional features
1 year of support via email
Private Messaging.
Allows buyer and provider to discuss projects.
No need to setup a cronjob.
Custom Fields, Collect extra data for projects and accounts.
Attach files to projects and bids.
~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~
Vulnerability:
*SQLi Vulnerability
DEMO URL :
http://demos.kubelabs.com/kubelance/profile.php?id=[sql]
# 0day n0 m0re #
# L0rd CrusAd3r #
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed