Update Nigeria & BrightZity Technologies SQL Injection Vulnerability

2016.07.15
Credit: 1337r00t - Fr0m Saudi Arabia
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89
Dork: intext:Powered by Update Nigeria & BrightZity Technologies " inurl:/page_details.php?id=

|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |--------------------------------------------------------------| |[+] Exploit Title: SQL Injection Vulnerability [ Update Nigeria & BrightZity Technologies ] |[+] |[+] Exploit Author: 1337r00t |[+] |[+] Vendor Homepage: http://www.updateng.com/ |[+] |[+] Google Dork: intext:Powered by Update Nigeria & BrightZity Technologies " inurl:/page_details.php?id= |[+] |[+] Tested on: Mozilla Firefox |[+] |[+] Date: 14/7/2016 |[+] |--------------------------------------------------------------| |[+] Exploit : |[+] |[+] |[+] Sql Error Path :- |[+] http://[$Site]/page_details.php?id=[SQL] |[+] |[+] |--------------------------------------------------------------| |[+] Demo:- |[+] |[+] http://www.al-medinahinternationalcollege.com/page_details.php?id=17 |[+] |--------------------------------------------------------------| |[+] My Accounts :- |[+] |[+] Twitter:1337r00t |[+] Instagram: 1337r00t |[+] |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |[+]-------------------------------------------[+] |[+] G2 : Killer~X - 3NeeDaN HacKeR - Saudi HeX - Lion Hacker - Ev!L r00t - BaRQawI - LaTh3 |[+] |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |[+] Discovered By : 1337r00t |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*|


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top