DB[CMS] 2.01 remote SQL injection

2010-05-19 / 2010-05-20

Credit: Pokeng

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

Dork: \"Designed and Developed by Debliteck Ltd\"

# Exploit Title: DB[CMS]  Sql Injection Vulnerability
# Author: Pokeng
# Software Link: http://www.debliteck.com/how.php

# Version: Ver2.01
# Platform / Tested on: Win/Linux
# category: webapps/0day
# Code : http://[site]/article.php?id=[SQL]
# Dork : "Designed and Developed by Debliteck Ltd"

//Now I'm Just Alone In The Dark T_T

//Very Thank's For My brother Who Always Give Me Support By The Good
Way = N4ck0 And Aury

Please accept my submission Mr.Admin ^_^

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

DB[CMS] 2.01 remote SQL injection

Dork: \"Designed and Developed by Debliteck Ltd\"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.