Article Publisher PRO v2.1.2 SQL Injection Vulnerability

2010-06-0700:00:00
Sid3^effects
0day.today
JSON
Exploit for php platform in category web applications
========================================================
Article Publisher PRO v2.1.2 SQL Injection Vulnerability
========================================================


1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : Inj3ct0r.com                                  0
1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1
0                                                                      0
1               ##########################################             1
0               I'm Sid3^effects member from Inj3ct0r Team             1
1               ##########################################             0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
Name : Article Publisher PRO v2.1.2 SQLi vulnerability
Date   : june, 7 2010
Author : sid3^effects <shell_c99[at]yahoo.com>
vendor url : http://www.articlepublisherpro.com/
Dork : Powered by Article Publisher PRO v2.1.2 
special thanks to : r0073r (inj3ct0r.com),*L0rd Ð³rusAdÐ™r*,aa_Numb(MaYur),LiquidWorm,gunslinger_
greetz to : MR.SoOoFe,[email protected],dec0d3r,41.w4r10r and all ICW members.
###############################################################################################################
Description:
On the web, content is king... but managing a website with a large amount of content can be challenging, to say the least. If the right foundation is used,
the job can be easy. If not, it can become a full-time job... and a huge chore! Who needs that?
Creating your site's content can happen in many ways with Article Publisher PRO, a time-proven article management system. You can write articles or post your
own news reports, you can allow others to contribute their articles and news items, and you can subscribe to RSS feeds from a wide variety of sources and
post clips.
Managing articles and comments is easy, too, with the many options provided by our article management script.it really is a comprehensive content management
system oriented toward efficient handling of articles and news clippings.
##############################################################################################################

Sql injection vulnerability is found in Article Publisher PRO v2.1.2
Xploit : sqli

demo url:http://article-publisher-pro.phparticlescript.com/send_to_friend.php?art_id=[Sqli]
##############################################################################################################



#  0day.today [2018-04-08]  #
JSON