Comfortsuite SQL Injection

2011-08-17 / 2011-08-18

Credit: [skote_vahshat]

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

|=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*-*-*-*-*=|
|* ______ ____ __ __ |
|* /\__ _\/\ _`\ /\ \/\ \ |
|* \/_/\ \/\ \ \L\ \\ \ \_\ \ { Turki$ hackers } |
|* \ \ \ \ \ _ <'\ \ _ \ |
|* \ \ \ \ \ \L\ \\ \ \ \ \ |
|* \ \_\ \ \____/ \ \_\ \_\ |
|* \/_/ \/___/ \/_/\/_/ |
|* |
|* |
|=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*=*-*-*-*-*-*-*-*-*=|
=======================================================================
\* [Title] :[comfortsuite injection vulnerability] /*
\* [Author] :[skote_vahshat] /*
\* [Home] :[Http://Skote-Vahshat.com] /*
\* [Archive] :[Http://xpl.skote-vahshat.com] /*
\* [Email] :[skote.vahshat@Gmail.Com] /*
=======================================================================
/* [+]Exploit :
/* http://www.target.com/page.php?id=[SQLi]
/* [+]Demo:
/* http://www.sexboutique.co.il/item.php?id=1940'
=======================================================================
|_***_| special thanks : bl4ck.viper Ehsan_Hp200 all turkiS hackers|
=======================================================================

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Comfortsuite SQL Injection

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.