################################################################################??########
2 Z7 B0 L5 P! f- I& {; x#
$ p' x/ F! E) W* D' T# d' K# Exploit Title : Net Ways Cms Sql Injection Vulnerability - q v# S& l2 d* w
#
" a8 q' R/ x6 L0 u3 W# Author : IrIsT.Ir . k+ w: X, M- [2 |2 J @" [+ ^
# : x# ^% _+ }' v a8 C, K7 B
# Discovered By : Am!r
6 K. z- Z6 V6 F6 @. w% }#
k2 x- e3 |9 x" E. X2 ^: x. w0 j* m# Home : http://IrIsT.Ir/forum , f( n1 T2 I& d
#
7 e, _0 Z5 @8 {# Software Link : http://www.netways.com/ www.political-security.com
5 w$ J c9 |2 L; n/ s" p#
3 z" `$ ]5 A! l8 k, K! X; z& h: m# Security Risk : High 5 z2 X& g; _+ y
# - E: R3 t3 E% u3 O8 ]9 Q; v- ~0 I8 b
# Version : All Version
$ ]4 T/ X6 O: Z i# & H) }% e) q1 Y- l( V
# Tested on : GNU/Linux Ubuntu - Windows Server - win7
V6 u0 ^! h! _# - G. K( D* y0 }/ a/ R* Z/ S* T
# Dork : intext:"Designed & developed by NetWays" 5 ^% I- X/ G$ g! R6 d
#
- i, {" C0 P* j, D0 K c( J################################################################################??######## 6 Y' e: d( W- ]- l n
#
* [ c9 b! a4 ~# c. q/ E5 {# Expl0iTs : 9 Z; w, F: @, H* r6 D- Y) d
#
9 Y. }/ h2 Q) G) y6 f; R1 ^3 q# http://target.com/news.php?id=[Sql]
+ f5 H9 m: y2 ^- I5 l# O) K4 P2 c$ ^% Y# P
#
% z9 ?8 [1 G. ~. r8 {) o# D3mo : 1 p0 V: ~0 _3 y! d3 S. m( G7 w
# # m& W& z" |) O
# http://compagnieparento.com/news.php?id=7[Sql] # {4 c3 l/ ^/ j( A+ J' ?) J
# % E9 t4 m) a4 Q2 }# U4 x
################################################################################??########
( l& m t$ I0 \- i# ) u; A- y6 h( h
# Greats : B3HZ4D - nimaarek - Dead.Zone - C0dex - SpooferNinja - TaK.FaNaR - Nafsh - BestC0d3r ' l/ V8 ~# S4 @* h' i; b; x) P
#
0 W3 l3 u) Y1 k3 T8 g# 0x0ptim0us - TaK.FaNaR - m3hdi - F@rid - Siamak.Black - H4x0r - dr.tofan - skote_vahshat - d3c0d3r 8 d: x9 \8 |3 H4 g' h
# & D6 {* C3 m# t+ S3 ?6 }
# Mr.Xpr & M.R.S.CO & Mr.Cicili & H-SK33PY & All Members In Www.IrIsT.Ir/forum
$ H( \0 s2 Q, S# m; c- y3 E' ~# , k4 H1 F$ n, _ V, I& Z, D
################################################################################??######## |