XAOS CMS suffers from a remote SQL injection vulnerability.
e5cfd804a58020e6e3ea34bdfeb752cd128c65e425ab5be93d4ff719c3f0b7bd# Exploit Title: XAOS CMS SQL Injection Vulnerability
# Date: 25/07/2010
# Author: H-SK33PY
# Software Link: http://www.xaos.it/
# Version: N/A
# Google dork : Powered by XAOS systems
# Platform / Tested on: linux
# Category: webapplications
# Code : [SQLi] & [BSQLi]
010101010101010101010101010101010101010101010101010101010
0 0
1 Iranian Datacoders Security Team 2010
0 0
010101010101010101010101010101010101010101010101010101010
#BUG:#########################################################################
After find bug on the sites , run this :
http://site.com/index.php?m=1[SQLi]
If you can not inject run Blind SQL Injection
http://site.com/index.php?m=1[BSQLi]
#############################################################################
Website : http://www.datacoders.ir
Special Thanks to : ccC0d3rZzz & all iranian datacoders members
#############################################################################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed