Webmaster CORPOWEB PROYECTOS C.A. Sql Injection Vulnerability

2017.01.21
ir Ashiyane Digital Security Team (IR) ir
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: intext:"Webmaster CORPOWEB PROYECTOS C.A." inurl:.php?id=

|=============================================================| |-------------------In The Name Of God------------------------| | | Exploit Title: GTS IT HUB Bypass Admin Page Vulnerability | | Exploit Author: Ashiyane Digital Security Team | | Vendor Homepage: http://corpoweb.com/ | | Google Dork : intext:"Webmaster CORPOWEB PROYECTOS C.A." inurl:.php?id= | | Tested on: Windows 10 ~~~> Mozilla Firefox | | Date: 2017-01-20 |==========================================================| | Proof : | | | http://www.covencaucho.com/cw_site2/1/link_2.php?id=[SQL] | | http://www.mackzulia.com/cw_site/1/noticia.php?id=[SQL] | | http://ali3000.com/cw_site/1/noticia.php?id=[SQL] | | http://www.belweb.com.ve/cw_site4/1/detalleproducto.php?id=[SQL] | | http://noticiasyaracuy.com/movil/noticiaunica.php?id=[SQL] | |=============================================================| | Discovered By : HackFans |=============================================================|


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top