General News compromised was compromised via amazing blind SQL injection. You can see the database, tables & users informations on full disclosure website.

Vulnerable Target :
Host IP :
Web Server : Apache/2.2.15 (Fedora)
Powered-by : PHP/5.2.13
Injection Type : MySQL Blind
Current DB : web

The worse is they posted passwords dump and hundreds of people have already cracked it. We recommend you to change your password on urgent basis as it is the normal bad practice people use same password for all online portals e.g web mail, paypal and so on.


The good or bad guy who had fun with it is ;

[+] Author: Jackh4xor @ w4ck1ng
[+] Site: