cehov Posted January 25, 2015 Report Share Posted January 25, 2015 (edited) Dealer Express Auto Sales CMS SQLi by #cehov RSTPlatform: Web AppSellers of CMS: http://www.dealerexpress.net/page.php Type: Sql injection, privilege escalationAdmin url: http://www.domain.com/CarDealer/admin/Date of begin: 24 feb 2015Dork 1: "powered by dealer express"Dork 2: "result.php?makeid="Example: http://www.domain.com/cardealer/results.php?makeid=55 http://www.domain.com/CarDealer/results.php?makeid=8The makeid is not the only, there are multiple vuln. in this auto cms.Have fun RST. Edited January 25, 2015 by cehov Quote Link to comment Share on other sites More sharing options...