Pobol WebBasic - SQL Injection Vulnerability



EKU-ID: 1613 CVE: OSVDB-ID:
Author: the_cyber_nuxbie Published: 2012-03-12 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home


1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Official Website: http://www.1337day.com                        0
1  [+] Support E-mail  : mr.inj3ct0r[at]gmail.com                      1
0                                                                      0
1                ##########################################            1
0                I'm NuxbieCyber Member From Inj3ct0r Team             1
1                ##########################################            0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

[ Pobol WebBasic - SQL Injection Vulnerability ]

[x] Author : the_cyber_nuxbie
[x] Home   : www.thecybernuxbie.com
[x] E-mail : staff@thecybernuxbie.com
[x] Found  : 09 March 2012 @ 11:14 PM.
[x] Tested : Back|Track 5.
[x] Dork   : inurl:"/resimler.php?albumID="
________________________________________________________________________
************************************************************************

- Info WebApps:
POBOL web ve grafik hizmetleri eskiden bilisim firmalarinda ve reklam ajanslarinda, simdilerde ise günümüz teknolojisi ile uyumlu fakat sikiciliktan
uzak tasarimlara imza atmak için 2007 yilinda çalismalarina baslamis bir dijital tasarim firmasidir.
+90 505619356703124731001
info@pobol.net
http://www.pobol.net

- Exploit Report:
http://localhost/resimler.php?albumID=[SQL Injection]

- Page LogIn:
http://localhost/site/admin/ <--- LogIn Area...!!!

- Sample WebApps Vuln SQLi:
http://workandtravelnewyork.com/resimler.php?albumID=16' + [SQL Injection]
http://ayderliligum.com/resimler.php?albumID=7' + [SQL Injection]
http://ceo-education.com/resimler.php?albumID=5' + [SQL Injection]

0day no more...
"n0 d0rk f0r k1dd10ts"

- Curahan Hati:
I want to school college level...
(the biggest obsession = S1 - TI)
But I do not have a cost...
Help Me...!!!

- Greetz:
*** 1337day Inject0r TEAM ***
...:::' All Member & Staff Inject0r TEAM ':::...

- Greetz To All Exploiters From Indonesian:
[ Member Of Inj3ct0r & Exploit-DB ]
Akatsuchi, AntiSecurity, Arianom, bius, blackraptor, bumble_be, c4uR, cr4wl3r, cyberlog, Don Tukulesto, EA Ngel,
eidelweiss, Flyff666, g3mbeLz_YCL, Gendenk, gunslinger_, h4ntu, IbnuSina, irvian, Jack, k3m4n9i, k1ngk0n9, k1tk4t,
k4mtiez, K-159, kecemplungkalen, Mask_magicianz, MISTERFRIBO, M3NW5, Mbah_Semar, mywisdom, Newbie Campuz, NoGe, 
NTOS-Team, Oli Bekas, OoN_Boy, Pokeng, r3m1ck, S3T4N, s4va, sikunYuk, SENOT, skulmatic, spykit, Sudden_death,
team_elite, tempe_mendoan, the_day, tomplixsee, v3n0m, vir0e5, Vrs-hCk, vYc0d, Xr0b0t, y3d1ps, etc... 

"Kalian Telah Mengharumkan Nama INDONESIA Di Dunia IT-Underground"

Me @ March, 09 2012, GMT +11:14 Solo Raya, Indonesian.