Star Design BD SQL Injection

2017.06.22
ir Mersad Security Research (IR) ir
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: intext:"Website Developed By Star Design BD"

# Exploit Title: Star Design BD - SQL Injection # Google Dork: intext:"Website Developed By Star Design BD" # Date: 2017-06-20 # Exploit Author: Mersad Security Research # Software Link: - # Version: all # Tested on: Kali Linux # Vendor Homepage: http://www.stardesignbd.com/ # CVE : - -------------------------------------- Description: #Star Design BD CMS===> Inventory Management Software Successful inventory management involves creating a purchasing plan that will ensure that items are available when they are needed (but that neither too much nor too little is purchased) and keeping track of existing inventory and its use. Two common inventory-management strategies are the just-in-time method, where companies plan to receive items as they are needed rather than maintaining high inventory levels. ------------------------------------- Demo: http://atrumpower.com/details.php?detailsID=14[SQLi] http://mymarketbd.com/categories.php?subCatID=6[SQLi] http://www.obsorbarta.com/categories.php?catID=5[SQLi] http://easyitbd.com/categories.php?catID=26[SQLi] ------------------------------------- # Discovered By: Sh4dow (BlackPentester@Gmail.Com) # We Are:Mersad (Mersad - Gray Industry) # https://telegram.me/MersadGroup # Mersad@Protonmail.Com # Sh4dow - Cyrus - SOLTAN SILENT - AminStev


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top