Dede CMS V5.6_GBK SQL盲注入漏洞,Dede CMS blind SQL Injection Vulnerability。

==========================================
Dede CMS blind SQL Injection Vulnerability
==========================================

   010101010101010101010101010101010101010101010101010101010    
   0                                                       0
   1        Iranian Datacoders Security Team 2010          1
   0                                                       0
   010101010101010101010101010101010101010101010101010101010


# Exploit Title: Dede CMS SQL Injection Vulnerability
# Date: 18/09/2010                             
# Author: H-SK33PY                      
# Software Link: http://www.dedecms.com/
# Version: V56_GBK
# Google dork :  inurl:*.php?id= & intext:Powered by DedeCMS V56_GBK
# Platform / Tested on: linux
# Category: webapplications
# Code : [SQLi]


#BUG:#########################################################################

run SQL Injection method in all of this dork ;) 


example : 

http://[PATH]/story.php?ID=1[SQL injection]


Live demo : 

http://efujin.net/book/story.php?id=1[SQL injection]


Good Luck 

#############################################################################
Our Website : http://www.datacoders.ir/

Contact me : h-skeepy@att.net

Special Thanks to : Immortal Boy & Sp|R|T & BigB4NG & mehrdadab7 & hosinn & r00t & 3r1ck & The.3zar &  NIK  

                                        All Iranian DataCoders Members

Greetz to : All HackerzHub.com Members   

#############################################################################