facebook facebook twitter rss

Dolibarr CMS 3.2.0 multiple sql injection vulnerabilities

Author: Tunisian spl01t3r , Published: 13-06-2012
+----------------------------------------------------------------------+
# Exploit Title: Dolibarr CMS 3.2.0 multiple sql injection vulnerabilities
# Google Dork:
# Date: 12/06/2012
# Exploit Author: Tunisian spl01t3r
# Software Link: http://www.dolibarr.org/downloads
# Version: 3.2.0
# Tested on: XP

____ (_) ____ ___
( _ \| |( _ \ / _ \
| | | | || | | x |_|
| ||_/|_|| ||_/ \___/
|_| |_|
_
(_) ____ ____ ____ _____
| | / __| / __| \__ \ / ` \
| | \___ \ \___ \ / _ \_ | Y Y \
|_| |____/ |____/ (___ / |_|_| /
\/ \/
+----------------------------------------------------------------------+

[+] Exploit 1 :

http://www.example.com/adherents/fiche.php?rowid=1[SQL]

[+] Exploit 2 :

http://www.example.com/list.php?memberslist=1[SQL]


+----------------------------------------------------------------------+
[+] greetz to : BIbou sfaxien ; mech lazem ; tn_scorpion ; anas laaribi ;
jendoubi ahmed ; s-man ; chaouki mkachakh & ;) --Geni ryodan-- ;)
daly azrail ; med bradai ; 7rouz ; ghazy info ; mohamed bel ;
hassen ben mbarek ; prince bibou ; hag whag ; anis van toets
Safoine sassi ; DR.hsm ; HAMdi matador....
& all tn_spl01t3r's freinds
mAhna mAhna

Profile : www.facebook.com/TN.spl0it3r

+----------------------------------------------------------------------+

Like us on Facebook :