Duhok Forum 1.1 - SQL Injection

EDB-ID:

17335

CVE:



Author:

M.Jock3R

Type:

webapps


Platform:

PHP

Date:

2011-05-28


===================================================================
DuhokForum <= 1.1 (index.php) SQL Injection Vulnerability
===================================================================

# Exploit Title: DuhokForum <= 1.1 (index.php) SQL Injection Vulnerability
# Date: 28-05-2011
# Author: M.Jock3R
# Vendor or Software Link: http://www.duhoktimes.com/df/?file=duhokforum-1.1
# Version: 1.1
# Category:: webapps
# Google dork: duhokFrm 1.1 © Dilovan 2007 - 2008
# Tested on: windows XP Sp2 FR
# Demo site: http://forum2009.eb2a.com/index.php?mode=f&f=1'

Exploit:
http:localhost/duhokfrm/index.php?modd=[Inj3ct Here ;)]

===================================================================
Greets To : 

Adelsbm / attiadona / Wjforum 

mail : madrido.jocker@gmail.com

THANKS TO ALL ALGERIAN HACK3R, FOR FREE GAZA 
===================================================================