Readmore Systems Script - SQL Injection

EDB-ID:

16265

CVE:

N/A




Platform:

PHP

Date:

2011-03-02


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

# Exploit Title: [Sql injextion]
# Google Dork: [Website Powered By ReadMore Systems,
Incorporated<http://readmoresystems.com/>
]
# Date: [02/03/2011]
# Author: [Mohammed Fathi(vBzone),Zooka, El3arby (Egyption Hacker's]
# Software Link: [http://readmoresystems.com]
# Version: [All]
# Tested on: [Windows XP professional]
# CVE : [if exists]
Sql injection on file News.php?id=
http://xxx.com/news.php?id=[Sql]
---- Live --
http://www.site.com/news.php?id=157[sql commends]
----
By Zooka,vBzone
http://tantaday.com