OneCMS version 2.6.4 suffers from a remote SQL injection vulnerability.
340723e660fc8e70dd451b2d7e698464fa396300d183bc5e62d694cf4d42c827
===========================================================
OneCMS 2.6.4 Remote SQL insertion Vulnerability
-----------------------------------------------------------
foun by :kurdish hackers team
group : kurd-team
contact : pshela@yahoo.com
site : kurdteam.org
-----------------------------------------------------------
------------------------script-----------------------------
-----------------------------------------------------------
script name: OneCMS 2.6.4
site home : download : http://www.onecms.net/
-----------------------------------------------------------
Exploit:
--------
/boards.php?t=list&rank=[SQL insertion attacks]
/index.php?load=list&view=games&abc=[SQL insertion attacks]
-----------------------------------------------------------
Zryan_kurd ,root-SyS , all Member cold hackers team(cmg-team.com) , all kurdish hackers
-----------------------------------------------------------
================================================================