Monday, April 4, 2011


WEBANDHOST CMS SQL Injection Vulnerability

# Software Link: http://www.webandhost.de/
# Version: N/A
# Google dork : 
inurl:"default.php?id=" & intext:"powered by WEBANDHOST"

# Platform / Tested on: linux
# Category: webapplications
# Code : [SQLi]

POC:
http://site.com/default.php?id=1[SQLi]

admin panel : http://site.com/admin/

No comments:

Template by : mhiman@ hacker-newbie.org