################################################################################??######## 6 C% {, q) a9 C5 r7 N, c
# 1 c+ F& v- x5 u! e
# Exploit Title : Net Ways Cms Sql Injection Vulnerability $ d: D1 |" F$ u! x$ b
#
& w; X0 M" d; v9 Q+ X/ t# Author : IrIsT.Ir ; W0 U+ Z1 [$ H$ [0 A3 ^3 u3 p
# 3 P# }8 x+ `' i; @
# Discovered By : Am!r ' Y2 f2 E- \* ^5 a+ i c" x9 H& R' P
# & t0 f% j6 m7 s \/ o' Y( ~. G
# Home : http://IrIsT.Ir/forum ]1 H W4 A0 K# V- }8 _' q
# 4 P3 W) n% Y: }4 f; L
# Software Link : http://www.netways.com/ www.political-security.com" @- s* |0 ]3 n% Z
#
# E: K0 Y0 K) O9 k& |+ b# Security Risk : High
. n, z |3 V; X# 8 Q2 p- [: ^ P0 ~- ~: l' o$ V
# Version : All Version
0 _" x" `' V- @# : D# L3 g; V# B! m0 b1 D, n
# Tested on : GNU/Linux Ubuntu - Windows Server - win7 " h! C( \" g' i- M
#
$ F: Y7 q& C* q# Dork : intext:"Designed & developed by NetWays" , K4 M3 n" U4 m" D9 @/ S
#
# M! a1 k5 z! Z+ a3 P& B1 d################################################################################??########
* y( k8 P3 l5 N* f* H8 E4 I+ l#
- K+ l8 Y( r- e% F# Expl0iTs : ( r, x( H, C' W0 J
# . t9 N$ R2 R! ]1 a, f
# http://target.com/news.php?id=[Sql]
0 g/ J" e d, R1 a8 t. J2 v# - {; L* o% z' M' a9 ~
# : E7 B% R- D5 T* i$ h: |( Q6 H$ y
# D3mo : ) h/ N4 G" N/ R) u9 I2 Z- r% g
#
- k# b6 c& ?" T$ S. H% C& r/ C# http://compagnieparento.com/news.php?id=7[Sql] 6 f! L$ C: _0 P# K% p) g
#
: V0 n7 h+ a, e P" y& C################################################################################??########
# E5 s3 g T( T. L! p# 5 C1 E9 h* } {& j' }" _
# Greats : B3HZ4D - nimaarek - Dead.Zone - C0dex - SpooferNinja - TaK.FaNaR - Nafsh - BestC0d3r
+ ~' A' @# _4 o& Y# . t) ?; t! |& ~& u6 ^9 F/ Y ]
# 0x0ptim0us - TaK.FaNaR - m3hdi - F@rid - Siamak.Black - H4x0r - dr.tofan - skote_vahshat - d3c0d3r 4 ~" i6 \0 P. {6 [9 m5 P7 ~ {
# ! a# e% g3 g( `' S
# Mr.Xpr & M.R.S.CO & Mr.Cicili & H-SK33PY & All Members In Www.IrIsT.Ir/forum
1 S/ X F0 L. d0 _9 Q$ F" B; t# 9 m8 F/ m3 o( u; |# a
################################################################################??######## |