Universitas Pendidikan Ganesha CMS SQLi Vulnerability

2017.08.04
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

+++++++++++++++++++++++++ Google Dork : intext:"Copyright © 2011 Universitas Pendidikan Ganesha" Tested on : Windows - Havij 1.16 Pro ******************************************** [+] Dorking in google or other search engine [+] Go to SQL injection link : http://www.site.com/cms/index.php?c=Kontak&md=mn&kid=1413 [+] Go to the admin panel : http://www.site.com/path/cms/index.php?c=Kontak&md=mn&kid=1413 ******************************************** DEMO : http://adikpapua.undiksha.ac.id/index.php?c=Kontak&md=mn&kid=1413 ******************************************** ~ \ We Are / ~ Artefvcker | Arrownonymous | Berandal | Blck0Wl? | Clutzsec | GoC_X | k4luga | KxK_PrajurID ShoursCout | WoNg_Nd35O | Yonkou4 | ZEUS | 0wLCulun | "Samael" | ./ARMVXO

References:

http://www.facebook.com/owlsquad.id
http://www.twitter.com/id_berandal


Vote for this issue:
100%
0%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top