724CMS Enterprise Version 5.01 SQL Injection Vulnerability

2012.01.08
Credit: tempe_mendoan
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89
Dork: \"724CMS Powered\" , \"724CMS Version 5.01 Enterprise\"

.___ .___ .__ _________ .___ | | ____ __| _/ ____ ____ ____ ______|__|_____ ____ \_ ___ \ ____ __| _/ ____ _______ | | / \ / __ | / _ \ / \ _/ __ \ / ___/| |\__ \ / \ / \ \/ / _ \ / __ | _/ __ \ \_ __ \ | || | \/ /_/ | ( <_> )| | \\ ___/ \___ \ | | / __ \_| | \\ \____( <_> )/ /_/ | \ ___/ | | \/ |___||___| /\____ | \____/ |___| / \___ >/____ >|__|(____ /|___| / \______ / \____/ \____ | \___ > |__| \/ \/ \/ \/ \/ \/ \/ \/ \/ \/ [~]===========================================================================[~] [~]Title : 724CMS Enterprise Version 5.01 SQL Injection Vulnerability [~]Vendor : http://724cms.com/ [~]Author : tempe_mendoan [~]Contact : http://indonesiancoder.com/ [~]Google Dork : "724CMS Powered" , "724CMS Version 5.01 Enterprise" [~]Date : 06.01.2012 [~]Tested on : BT 5 [~]===========================================================================[~] ################################################################################# ===[ Example Exploit ]=== [?] http://localhost/section.php?ID=[inject] ################################################################################## Greats T0 : ./ And All My Friend Note : ./ I Love You Dila :*

References:

http://724cms.com/


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top