Faethon CMS version 1.3.4 suffers from a remote SQL injection vulnerability.
59f3990fbd28b0a921fd3177152751ded9e87fee11bba28396a42f2edac2d372
.___ .___ .__ _________ .___
| | ____ __| _/ ____ ____ ____ ______|__|_____ ____ \_ ___ \ ____ __| _/ ____ _______
| | / \ / __ | / _ \ / \ _/ __ \ / ___/| |\__ \ / \ / \ \/ / _ \ / __ | _/ __ \ \_ __ \
| || | \/ /_/ | ( <_> )| | \\ ___/ \___ \ | | / __ \_| | \\ \____( <_> )/ /_/ | \ ___/ | | \/
|___||___| /\____ | \____/ |___| / \___ >/____ >|__|(____ /|___| / \______ / \____/ \____ | \___ > |__|
\/ \/ \/ \/ \/ \/ \/ \/ \/ \/
[~]===========================================================================[~]
[~]Title : Faethon CMS 1.3.4 Sql injection Vulnerability
[~]Vendor : http://cmsfaethon.com/
[~]Author : tempe_mendoan
[~]Contact : http://indonesiancoder.com/
[~]Google Dork : "Powered by CMS Faethon" , "Powered by CMS Faethon 1.3.4"
[~]Google Dork : Jakarta , Indonesia ( Februari 2012 )
[~]===========================================================================[~]
#################################################################################
===[ Example Exploit ]===
[?] http://localhost/articles.php?by_author=[SQL]
[?] http://localhost/en/article.php?id=[SQL]
##################################################################################
Greats T0 :
./ And All My Friend
Note :
./ I Love You Dila :*