facebook facebook twitter rss

Rayan CMS Sql injection Vulnerability

Author: Iran Cyber Security Group , Published: 14-07-2015
# Exploit Title : Rayan CMS Sql injection Vulnerability


# Date : 12/07/2015


# Exploit Author : Iran Cyber Security Group


# Discovered By : MOHAMAD-NOFOZI


# Version : All Versions


# Category : Web Application Bugs


# Dork : intext:Powered By Rayan CMS or "Powered By Rayan CMS"


# Tested On : Windows


# Home : Iran-Cyber.Org


###############################

Proof Of Concept :


Exploit :


# site.com/uploaded/view_file_group.php?ci=[SQL]


And The Admin Page Is Here :


# site.com/admin/login.php


###############################


Thanks To : root3r - KamraN HellisH - JOK3R - WH!T3 W01F - Pi.Hack - Endless And All Members of Iran Cyber Security Group

Like us on Facebook :