################################################################################??########
4 c0 P) W6 e& h) I" R#
+ V- ^+ b( s2 c+ g# Exploit Title : Net Ways Cms Sql Injection Vulnerability
3 l) c: E* S# Q3 h8 Y1 k' q#
5 }" f D' `# F! g3 O# Author : IrIsT.Ir 7 N& s A7 g$ B
# * N% T+ A, j1 L# F! Z* y
# Discovered By : Am!r + p- D& M% @. q4 u( _1 {& t
# % M% q% k: }6 n7 \7 D
# Home : http://IrIsT.Ir/forum 1 b4 ]$ ?9 ^6 b) ^; ]
# 7 t; V2 @" Y; J5 o
# Software Link : http://www.netways.com/ www.political-security.com. b* @$ h/ C/ S' A0 z
#
/ p& J/ I: {5 Q" t6 i# Security Risk : High * ~0 t+ A" L/ c0 g, a
#
% q% w, q1 y. r7 m# Version : All Version
! H4 R& [' v% F0 }#
) J2 u/ O6 s3 L/ O$ v p# Tested on : GNU/Linux Ubuntu - Windows Server - win7 9 x# x+ W1 e1 J# F+ Q# i8 s
#
$ `% y& @6 n. o# @" n0 G# Dork : intext:"Designed & developed by NetWays" 3 g) j7 O8 u* w- a/ c! `2 R% t
#
- g: ?! U0 [! n( \; C################################################################################??########
4 ]& p r9 a, r& k#
4 F8 z# ]7 J- X- f. d# Expl0iTs :
7 p0 s5 m% M I6 E* v8 j6 A0 c#
& _ [# c; C9 G+ o3 O& g# http://target.com/news.php?id=[Sql] 8 j* N" r9 \4 T/ [9 M
#
& `6 z) A/ m# K#
$ D" w0 e( k( w$ T n% X# D3mo :
6 J8 i' \% \. V5 H#
3 i* S+ k$ q- c# http://compagnieparento.com/news.php?id=7[Sql] 0 x5 H0 z# d5 L4 C8 J+ s/ @ w0 c1 ]
# & i) `3 D" m8 q- T9 @# n8 `9 g7 F
################################################################################??######## 2 r/ {3 t3 }# R5 G
#
$ R7 `8 {0 x' r) j( N) |" D# Greats : B3HZ4D - nimaarek - Dead.Zone - C0dex - SpooferNinja - TaK.FaNaR - Nafsh - BestC0d3r 3 T; g* b2 u6 m- v5 K2 [
# 3 V6 Q- M" E& N* a. p5 D
# 0x0ptim0us - TaK.FaNaR - m3hdi - F@rid - Siamak.Black - H4x0r - dr.tofan - skote_vahshat - d3c0d3r
* R8 M5 H; @1 Q, D3 ?" T' H#
% x( H4 _0 g! I$ k, r# Mr.Xpr & M.R.S.CO & Mr.Cicili & H-SK33PY & All Members In Www.IrIsT.Ir/forum
/ \- W/ k/ _5 b: K$ _# + P! O" X; h, Q6 g ]/ L0 E
################################################################################??######## |