Hosting Syste-Mar SQL Injection

2012.06.12
Credit: TAURUS OMAR
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89
Dork: intext:\"Hosting Syste-Mart\"

==> ABOUT ME: --- TAURUS OMAR --- INDEPENDENT SECURITY RESEARCHER --- ACCESOILEGAL.BLOGSPOT.COM --- @omartaurus --- omar-taurus[at]dragonsecurity[dot]org --- omar-taurus[at]live[dot]com ===> INFO: Author : TAURUS OMAR Category : Webapps / 0day Title Exploit : Hosting Syste-Mar - SQL Injection Vulnerability Vendor : Hosting Syste-Mar URL Vendor : http://www.syste-mart.com/ Google Dork : intext:"Hosting Syste-Mart" ==> SAMPLE'S SQLi: http://www.entremodelos.com.mx/verModelo.php?id=28 [SQL Injection] http://www.piccola.com.mx/verLinea.php?id=3 [SQL Injection] http://www.puntoforza.com/verLinea.php?id=19 [SQL Injection] http://www.puntoforza.com/verLinea.php?id=19 [SQL Injection] http://laglorietachapalita.com/verObra.php?idObra=388&id=82 [SQL Injection] MORE IN GOOGLE..

References:

http://www.syste-mart.com/


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top