Vanira CMS SQL Injection

2011-09-27T00:00:00
ID PACKETSTORM:105343
Type packetstorm
Reporter kurdish hackers team
Modified 2011-09-27T00:00:00

Description

                                        
                                            `===========================================================  
Vanira-cms Remote SQL insertion Vulnerability   
-----------------------------------------------------------  
foun by :kurdish hackers team  
group : kurd-team  
contact : pshela@yahoo.com  
site : kurdteam.org  
-----------------------------------------------------------  
------------------------script-----------------------------  
-----------------------------------------------------------  
script name: Vanira-cms iran php script   
site home : http://tursweb.com  
price : BY Iran MonY  
-----------------------------------------------------------  
  
Exploit:  
--------  
voteshow.php?vact=ok&vtpidshow=1 [SQL insertion attacks]  
  
live site :  
http://melikaco.ir/voteshow.php?vact=ok&vtpidshow=1  
-----------------------------------------------------------  
Zryan_kurd ,r00t-SyS , all Member cold hackers team(cmg-team.com) , all kurdish hackers  
-----------------------------------------------------------  
================================================================  
`