TYCHE STUDIO CMS SQL Injection XSS

Published
Credit
Risk
2017.05.12
Berandal | OWL SQUAD
Low
CWE
CVE
Local
Remote
CWE-79
N/A
No
Yes
Dork: inurl:php?id= intext:TYCHE STUDIP

<------------------ header data start ------------------- >
################################################## ###########
# Application Name : SQLi in TYCHE STUDIO CMS
# Vulnerable Type : SQL ─░njection and XSS
# GHDB Dork: inurl:php?id= intext:TYCHE STUDIP
# Author: Berandal | OWL SQUAD
# Contact: https://www.twitter.com/id_berandal
# Live Target
[+] http://centrodepiezas.es/index.php?marca=Touched%20by%20Berandal
< ------------------- header data end of ------------------- >

References:

http://www.maxteroit.com/
https://www.facebook.com/owlsquad.id/
https://twitter.com/id_berandal


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com