Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 04/01/2008 Updated: 15/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in admin.php/vars.php in CustomCMS (CCMS) 3.1 Demo allows remote malicious users to execute arbitrary SQL commands via the p parameter in the Console page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
customcms ccms 3.1

#!/usr/bin/perl #Found by Pr0metheuS #Coded by Pr0metheuS #Gr33tz-Team #Dork : intitle:"CCMS v31 Demo PW" print "______________________________________\n"; print "-=-=-=-=-=-=+-=-=-=-=-=-=-+-=-=-=-=-=|\n"; print "-=-=-=-=-=-=+CCMS Exploit+-=-=-=-=|\n"; print "-=-=-=-=-=-=+Remote MD5 Hash+-=-=-=-=|\n"; print "-=-=-=-=-=-=+By Pr0metheus ...

CWE-89 http://www.securityfocus.com/bid/27069 http://securityreason.com/securityalert/3510 http://osvdb.org/39894 https://exchange.xforce.ibmcloud.com/vulnerabilities/39317 https://www.exploit-db.com/exploits/4809 http://www.securityfocus.com/archive/1/485633/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/4809/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-6658

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect