Tuesday, March 15, 2011

Stanmax Interactive Studio CMS Vulnerable to SQL Injection


Title : Stanmax Interactive Studio CMS Vulnerable to SQL Injection
Vendor : http://www.stanmax.com.my/
Found by : p0pc0rn
Dork : intext:"Site Powered By Stanmax Interactive Studio"


SQL
----
http://site.com/index.php?p=news_details&ann_id=[SQL]

POC
---


thanks,
-p0pc0rn-
Share:

1 comments:

Muhammad Azeem said...

This is a nice article..
Its very easy to understand ..
And this article is using to learn something about it..

c#, dot.net, php tutorial, Ms sql server

Thanks a lot..!