Vizyonnet SQL Injection

Published
Credit
Risk
2016.07.28
Av3LoXiS
Medium
CWE
CVE
Local
Remote
CWE-89
N/A
No
Yes
Dork: inurl:index.php?link= & vizyonnet.png

# Exploit Title : Vizyonnet ,SQL Injection
# Exploit Author : Av3LoXiS
# Dork : inurl:index.php?link= & vizyonnet.png
# Date: 2016/07/27
____________________________________________________
# Sql ─░njection URL
http://www.example.com/index.php?link=

#Admin Panel

http://www.example.com/admin/giris.php

# Demo Sql Url :

http://www.karsiyakatemizlik.org/index.php?link=12
http://www.orhanboran.com.tr/apartment/index.php?link=44
http://www.bebekotrabzon.com/index.php?link=32
http://www.dekartrabzon.com/insaat/index.php?link=5
http://www.samsunsomine.net/index.php?link=5
http://plusbasketball.com/index.php?link=24
http://mykajans.com/index.php?link=24

#Demo Admin Panel

http://www.karsiyakatemizlik.org/admin/giris.php
http://www.orhanboran.com.tr/apartment/admin/giris.php
http://www.bebekotrabzon.com/admin/giris.php
http://www.dekartrabzon.com/insaat/admin/giris.php
http://www.samsunsomine.net/admin/giris.php
http://www.plusbasketball.com/admin/giris.php
http://mykajans.com/admin/giris.php

==========================================
# Discovered by : Av3LoXiS
# FB : /Av3LoXiS


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com