======================================================================== | # Title : NKINFOWEB V5.2.2.9 Sql injection vulnerability | # Author : indoushka | # email : indoushka4ever@gmail.com | # Tested on : windows 8.1 Français V.(Pro) | # Version : V 5.2.2.9 | # Vendor : http://www.nkinfoweb.com/ | # Dork : Powered by NKINFOWEB V5.2.2.9 ======================================================================== http://www.nks.ac.th/main/showimages.php?idgroup=111 => inject here http://www.nks.ac.th/main/administrator/ => admin panel Go to http://www.nks.ac.th/main/administrator/upload.php & upload your Ev!l Greetz : ⵏⴻⴽⴽⴰⴰ ⵙⴰⵍⴰⵀ ⴻⴷⴷⵉⵏⴻ------ⵯⵉⵯⴰ ⴰⵎⴰⵣⵉⴳⴻⵏ-------- ⵎⴰⵅⵡⴻⵍⵍ ⵛⴰⵛⵀⴷoⵍⵍⴰⵔ ------ | jericho * Larry W. Cashdollar * moncet-1 * Shadow_00715 | | ===================== pⴰⵛⴽⴻⵜ ⵙⵜoⵔⵎ ⵙⴻⵛⵓⵔⵉⵜⵢ =============================