BT Options SQL Injection Vulnerabilites

2017.02.08
ir Ashiyane Digital Security Team (IR) ir
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89
Dork: intext:"Designed & developed by BT Options"

|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |=============================================================| |[+] Exploit Title: BT Options SQL Injection Vulnerabilites |[+] |[+] Exploit Author: Ashiyane Digital Security Team |[+] |[+] Vendor Homepage: http://www.btoptions.com/ |[+] |[+] Dork : intext:"Designed & developed by BT Options" |[+] |[+] Tested on: Kali Linux |[+] |[+] Date: 08 / 03 / 2017 |=============================================================| |[+] Proof: |[+] |[+] http://www.businesstoday.lk/article.php?article=8938[SQLI] |[+] http://target.lk/article.php?article=3833[SQLI] |[+] |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |[+] Discovered By : 1TED |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*|

References:

Ashiyane Security Team


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top