Iranian Connection Network CMS SQL Injection Vulnerability

2016.07.29
ro 0x3a (RO) ro
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: intext:"طراحي و اجرا : شبکه ارتباطات ایرانیان " OR intext:"Powered & Desigend By : Irnethost.ir"

Exploit Title : Iranian Connection Network CMS SQL Injection Vulnerability Exploit Author : 0x3a Date : 26 / 07 / 2016 Vendor HomePage : www.irnethost.ir Version : All Version Tested On : Win7 , Mozilla FireFox ---------------------------- # Vulnerable Parametr : number ---------------------------- # Dork(s) : intext:"طراحي و اجرا : شبکه ارتباطات ایرانیان " intext:"Powered & Desigend By : Irnethost.ir" ---------------------------- # Demo : www.irnethost.ir/?show=p0&number=23 www.isogamasl.com/?show=p0&number=22 www.sadafsazan.com/?show=p2&number=34 www.lamaso.ir/?show=p0&number=22 ---------------------------- Greetz To : MOHAMAD-NOFOZI , Root3r


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top