Pemesanan Katering SQL Injection

2018.06.28
id Cr0W_ID (ID) id
Risk: Medium
Local: Yes
Remote: Yes
CVE: N/A
CWE: N/A
Dork: inurl:/menu.php?kategori= katering

*************************************************** # Exploit Title: Sistem Informasi Surat Dinas SQL Injection # Google Dork: inurl:/menu.php?kategori= katering # Date: 28/06/2018 # Author: Cr0W_ID # Team: Error Violence # Tested on: Windows 10 x64 *************************************************** [+] Search the dork in Google [+] Open target [+] Give ' in target, example ( www.target.cominurl:/menu.php?kategori=1' ) [+] Inject your target *************************************************** [+] Demo Site [+] http://www.medancatering.com/menu.php?id=1 [+] http://www.imanggaedu.xyz/menu.php?id=1 [+] http://sma1.hol.es/menu.php?id=1 *************************************************** Thanks To Error Violence

References:

Personal research


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top