Geomi CMS SQL Injection Vulnerability

2011-02-10T00:00:00
ID 1337DAY-ID-15377
Type zdt
Reporter ThunDEr HeaD
Modified 2011-02-10T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            #########################################################################
  
[+] Exploit Title : Geomi CMS by Tridan IT [ Sql Injection Vunerability ]
[~] Author : ThunDEr HeaD
[~] Contact : [email protected]
[~] Date : 11-01-2011
[~] HomePage : www.indishell.in
[~] Version : 1.2 , 3.0
[~] Tested on : PBL Technology
[~] Vulnerability Style : PHPCMS [ Sql Injection Vunerability ]
[~] Vendor: http://we.are.tridan.it/
#########################################################################
 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
<3 Love: -[SiLeNtp0is0n]-, stRaNgEr(lucky), inX_rOot, NEO H4cK3R, DarkL00k, Th3 RDX, G00g!3 [email protected]!0r, Mahi ,
eXeSoul, str1k3r, co0Lt04d , ATUL DWIVEDI , Jackh4xor
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 
 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
                           ......\m/ INDIAN CYBER ARMY \m/......
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 
 
 
Vulnerability:
  
*SQL injection Vulnerability*
 
 
[#] http://server/cms.php?categoryid=10
 
[#] http://server/cms.php?categoryid=[SQLi]
 
 
 
 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
=> PROUD TO BE AN INDIAN | Anythning for INDIA | JAI-HIND | Maa Tujhe Salam
   
=> c0d3 for motherland, h4ck for motherland
  
 
      
     Enj0y! :D
 
 
[#] DOne now time to rock \m/
  
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Bug discovered : 11 feb 2011
  
finish(0);
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
  
#End 0Day#



#  0day.today [2018-01-08]  #