E-Works Media SQL Injection

2011-09-15T00:00:00
ID PACKETSTORM:105158
Type packetstorm
Reporter 3spi0n
Modified 2011-09-15T00:00:00

Description

                                        
                                            `# Exploit Title: E-Works Media Sql Injection Vulnerability  
# Date: 15/09/2011 - 01:38  
# Author: 3spi0n  
# Software Link: http://www.e-worksmedia.com/  
# Tested On: BackTrack 5 - Win7  
# Platform: Php  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
  
[$] Dorks: "Website design by e-works media, inc"  
  
[$] Demo Sites:  
  
[~] http://www.psmuseum.org/exhibitions/current_exhibition.php?id=40"  
[PhpSQLi]  
[~] http://www.tastingroomwines.com/announcements/detail.php?id=87"  
[PhpSQLi]  
  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
# As Close As A Breath.  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
# Contact: Http://3spi0n.Net/  
# Greetz: Http://DarkDevilz.in/  
  
[Mr.PaPaRoSSe] [Black_Umo] [ALEXTRAX] [Brs_BaRoN] [ZyX]  
[And DD'z Family]  
  
[DarkDevilz - Defence And Destruction Group'z - TURKEY]  
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>  
`