ParsMedia SQL Inj. Vulnerability

Published
Credit
Risk
2017.07.15
Shigi
Medium
CWE
CVE
Local
Remote
N/A
N/A
No
Yes
Dork: intext:"طراحی و میزبانی: رسانه پرداز پارس" inurl:php?id=

#####################################################
# Exploit Title : ParsMedia SQL Inj. Vulnerability
# Google Dork : intext:"طراحی و میزبانی: رسانه پرداز پارس" inurl:php?id=
# Exploit Author : Shigi
# Tested On : Windows 7
# Video Link : https://www.youtube.com/watch?v=Cp_clEQpLYw
# Vendor Homepage : -
#####################################################
#

Demo :
# http://www.mtes.ir/news/news.php?id=54
# http://www.chantiq.com/fa/products/category.php?id=6

Admin Page :
# http://target.com/cp/


#
###########################################
# Discovered By : Shigi
# Twitter : @ChtShigi
# My Youtube Channel : https://www.youtube.com/channel/UCYTnimlKuYAKbPZqcWZE89w


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com